Vulnerability — CVE-2024-33253

CVE-2024-33253

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-33253
Description:: Cross-site scripting (XSS) vulnerability in GUnet OpenEclass E-learning Platform version 3.15 and before allows a authenticated privileged attacker to execute arbitrary code via the title and description fields of the badge template editing function.
Last updated date:: 08/07/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/07/2024
Reference url to background: https://github.com/FreySolarEye/CVE/blob/master/GUnet%20OpenEclass%20E-learning%20platform%203.15%20-%20%27certbadge.php%27%20Stored%20Cross%20Site%20Scripting