Description
A remote code execution (RCE) vulnerability in course_intro_pdf_import.php of Chamilo LMS v1.11.x allows authenticated attackers to execute arbitrary code via a crafted .htaccess file.
Remediation
References
Related Vulnerabilities
Mailman Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-4624)
Oracle Application Server CVE-2009-3412 Vulnerability (CVE-2009-3412)
WordPress Plugin Ajax Search Lite Security Bypass (3.1)
Squid NULL Pointer Dereference Vulnerability (CVE-2020-14058)
Jetty Improper Input Validation Vulnerability (CVE-2022-2047)