N/A

Totara LMS v19.1.5 and before is vulnerable to HTML Injection. An attacker can inject malicious HTML code in a message and send it to all the users in the application, resulting in executing the code and may lead to session hijacking and executing commands on the victim's browser. NOTE: The supplier states that the product name is Totara Learning and that the functionality referenced is the in app messaging client. They note that the in app messaging client only has the ability to embed a specific allowed list of HTML tags commonly used for text enhancement, which includes italic, bold, underline, strong, etc. Last, they state that the in app messaging client cannot embed <script>, <style>, <iframe>, <object>, <embed>, <form>, <input>, <button>, <svg>, <math>, etc., and any attempt to embed tags or attributes outside of the allowed list (including onerror, onaction, etc.) is sanitized via DOMPurify.

N/A

N/A

Totara LMS 安全漏洞

Totara LMS是Totara公司的一个学习管理系统。 Totara LMS v19.1.5及之前版本存在安全漏洞，该漏洞源于HTLM注入，可能导致攻击者向所有用户发送恶意HTLM代码，从而劫持会话或在受害者浏览器中执行命令。

N/A

N/A