Ilias · Ilias · CVE-2018-11117
**Name of the Vulnerable Software and Affected Versions**
ILIAS versions 5.1.x through 5.3.x before 5.3.5
**Description**
The issue concerns a problem with the `class.ilExternalFeedItem.php` file in the Services/Feeds/classes directory. It allows for XSS attacks through a link attribute.
**Recommendations**
For versions 5.1.x through 5.3.x before 5.3.5, update to version 5.3.5 or later to resolve the issue.