Security-Blog
Die Security-Gruppe informiert über behobene Sicherheitslücken in ILIAS
ILIAS 8.23
Wolf, Fabian [fwolf] - 26. Aug 2025, 16:00
Following 2 security issues have been resolved:
0045628: [UICore] UICore: Improper validation of CSRF tokens
0045642: [Logging] Logging: Plaintext Passwords in Error Logs
0045628: [UICore] UICore: Improper validation of CSRF tokens
Affected Version(s) | 8.22, 9.12, 10.0 |
Fixed Version(s) | 8.23, 9.13, 10.1 |
CVSS Score 4.0 | 8.6 |
Reported by | Lukas Scharmer (Databay AG) |
0045642: [Logging] Logging: Plaintext Passwords in Error Logs
Affected Version(s) | 8.22, 9.12, 10.0 |
Fixed Version(s) | 8.23, 9.13, 10.1 |
CVSS Score 4.0 | - |
Reported by | Jonathan Kaulard (Databay AG) |