Description

Chamilo LMS version 1.11.10 contains an XSS vulnerability in the personal profile edition form, affecting the user him/herself and social network friends.

Remediation

References

CVE-2020-23126

Related Vulnerabilities

SharePoint CVE-2022-41103 Vulnerability (CVE-2022-41103)

WordPress Plugin WooCommerce Catalog Enquiry Arbitrary File Upload (3.0.0)

WordPress Plugin Coming Soon Page, Under Construction & Maintenance Mode by SeedProd Cross-Site Scripting (5.1.0)

WordPress Plugin WP Support Plus Responsive Ticket System Privilege Escalation (7.1.4)

Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9511)

Severity

Medium

Classification

CVE-2020-23126 CWE-707

Tags

Missing Update Known Vulnerabilities