Description
Chamilo LMS 1.11.10 is affected by Cross Site Request Forgery (CSRF) via the edit_user function by targeting an admin user.
Remediation
References
Related Vulnerabilities
WordPress Plugin Online Lesson Booking Multiple Vulnerabilities (0.8.6)
WordPress Plugin Evarisk 'uploadPhotoApres.php' Arbitrary File Upload (5.1.5.4)
WordPress Plugin Skysa App Bar Integration 'submit' Parameter Cross-Site Scripting (1.03)
Perl Improper Input Validation Vulnerability (CVE-2015-8853)