Description

A reflected cross-site scripting (XSS) vulnerability in Chamilo LMS v1.11.13 allows attackers to execute arbitrary web scripts or HTML via user interaction with a crafted URL.

Remediation

References

CVE-2022-27422

Related Vulnerabilities

WordPress Plugin Simple Sitemap-Create a Responsive HTML Sitemap Cross-Site Scripting (3.5.7)

Oracle JRE CVE-2024-20952 Vulnerability (CVE-2024-20952)

WordPress Plugin Cms Pack TimThumb Arbitrary File Upload (1.3)

WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.16)

WordPress Plugin Campaign URL Builder Cross-Site Scripting (1.8.1)

Severity

Medium

Classification

CVE-2022-27422 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities