Vulnerabilities > Frentix > Openolat > 17.2.13
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-11 | CVE-2024-28198 | XXE vulnerability in Frentix Openolat OpenOlat is an open source web-based e-learning platform for teaching, learning, assessment and communication. | 7.5 |
| 2024-02-20 | CVE-2024-25973 | Cross-site Scripting vulnerability in Frentix Openolat The Frentix GmbH OpenOlat LMS is affected by multiple stored Cross-Site Scripting (XSS) vulnerabilities. An attacker with rights to create or edit groups can create a course with a name that contains an XSS payload. | 5.4 |