VYPR
Unrated severityNVD Advisory· Published Jun 13, 2024· Updated Aug 2, 2024

CVE-2024-33253

CVE-2024-33253

Description

Cross-site scripting (XSS) vulnerability in GUnet OpenEclass E-learning Platform version 3.15 and before allows a authenticated privileged attacker to execute arbitrary code via the title and description fields of the badge template editing function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • GUnet/OpenEclass E-learning Platformdescription
  • Gunet/Openeclassllm-fuzzy
    Range: <=3.15

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.