Description
Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via the system annnouncements parameter.
Remediation
References
Related Vulnerabilities
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2025-43767)
Apache Tomcat Numeric Errors Vulnerability (CVE-2014-0075)
WordPress Plugin Print Invoice & Delivery Notes for WooCommerce Cross-Site Request Forgery (4.7.2)
WordPress Plugin Comments-wpDiscuz Arbitrary File Upload (7.0.4)
Oracle Database Server CVE-2008-2600 Vulnerability (CVE-2008-2600)