Description
Chamilo 1.11.x up to 1.11.20 allows users with an admin privilege account to insert XSS in the languages management section.
Remediation
References
Related Vulnerabilities
WordPress Plugin User Control SQL Injection (2.1.0)
OpenSSL Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-2650)
Contao Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10642)
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2212)
Oracle Application Server Other Vulnerability (CVE-2005-3446)