Local File Inclusion Vulnerability in ILIAS eLearning Platform by ILIAS eLearning
CVE-2020-23996

8.8HIGH

Key Information:

Vendor: Ilias
Status: Ilias
Vendor: CVE Published:; 13 May 2021

What is CVE-2020-23996?

A local file inclusion vulnerability exists in the ILIAS eLearning platform prior to versions 5.3.19, 5.4.10, and 6.0. This flaw allows authenticated attackers to exploit the system by importing personal data, which could lead to the execution of arbitrary code. Designed for e-learning, ILIAS is critical for educational institutions, making it imperative for users to apply security updates promptly to mitigate potential risks.