Vulnerabilities > Ilias > Ilias > 5.2.20
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-18 | CVE-2018-10307 | Cross-site Scripting vulnerability in Ilias error.php in ILIAS 5.2.x through 5.3.x before 5.3.4 allows XSS via the text of a PDO exception. | 4.3 |
| 2018-05-18 | CVE-2018-10306 | Cross-site Scripting vulnerability in Ilias Services/Form/classes/class.ilDateDurationInputGUI.php and Services/Form/classes/class.ilDateTimeInputGUI.php in ILIAS 5.1.x through 5.3.x before 5.3.4 allow XSS via an invalid date. | 4.3 |