On one lonely Saturday evening I got really bored so I picked some random application to look at. This application was ILIAS learning management system. CVE-2020–25268 — authenticated remote code execution
CVE-2020–25267 — authenticated stored cross site scripting CVE-2020–25268 This was the most severe of the vulnerabilities found, it would allow…