Description
Chamilo 1.9.4 has Multiple XSS and HTML Injection Vulnerabilities: blog.php and announcements.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin Recent Backups Arbitrary File Download (0.7)
WordPress Plugin Better Font Awesome Cross-Site Request Forgery (2.0.1)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1643)
Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2012-1156)