Security-Blog

Die Security-Gruppe informiert über behobene Sicherheitslücken in ILIAS

July 2025

Tokar, David [tokard], Wolf, Fabian [fwolf] - 15. Jul 2025, 16:00

No security issues have been resolved in this version.

· Link

Tokar, David [tokard], Wolf, Fabian [fwolf] - 8. Jul 2025, 15:30

Following 5 security issues have been resolved:

0044299: [Weblink] Weblink: Missing permission checks
0044435: [Exercise] Exercise: Unauthorized access
0044469: [Glossary] Glossary: Missing RBAC checks
0044536: [Session (Course & Group)] Session: Missing RBAC checks
0045164: [Media Pools and Media Objects] Media Pool: DoS through infinite loop

· Link

Tokar, David [tokard], Wolf, Fabian [fwolf] - 8. Jul 2025, 15:30

Following 5 security issues have been resolved:

0044299: [Weblink] Weblink: Missing permission checks
0044435: [Exercise] Exercise: Unauthorized access
0044469: [Glossary] Glossary: Missing RBAC checks
0044536: [Session (Course & Group)] Session: Missing RBAC checks
0045164: [Media Pools and Media Objects] Media Pool: DoS through infinite loop

· Link

May 2025

Tokar, David [tokard], Wolf, Fabian [fwolf] - 27. May 2025, 17:00

Following 3 security issues have been resolved:

0044343: MediaCast: Unauthorized access
0044426: Learning Module HTML: Unauthorized access
0044559: MediaCast: Missing RBAC checks

· Link

Tokar, David [tokard], Wolf, Fabian [fwolf] - 27. May 2025, 17:00

Following 2 security issues have been resolved:

0044343: MediaCast: Unauthorized access
0044559: MediaCast: Missing RBAC checks

· Link