• info
• discussion
• exploit
• solution
• references

RETIRED: Dokeos Multiple Remote Code Execution and Cross-Site Scripting Vulnerabilities

Solution:
The vendor released Dokeos 1.8.4 SP3 to address these issues. Please see the references for more information.


Dokeos Open Source Learning & Knowledge Management Tool 1.8.4 SP1

• Dokeos dokeos-1.8.4-SP3.zip
  http://www.dokeos.com/download/dokeos-1.8.4-SP3.zip

Dokeos Open Source Learning & Knowledge Management Tool 1.8.4 SP2

• Dokeos dokeos-1.8.4-SP3.zip
  http://www.dokeos.com/download/dokeos-1.8.4-SP3.zip