Description
Chamilo before 1.8.8.6 does not adequately handle user supplied input by the index.php script, which could allow remote attackers to delete arbitrary files.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Modal Multiple SQL Injection Vulnerabilities (2.0.17)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-16943)
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3946)
WordPress Plugin Ultimate Category Excluder Cross-Site Request Forgery (1.1)