Description
A remote code execution risk was identified in the IMSCP activity. By default this was only available to teachers and managers.
Remediation
References
Related Vulnerabilities
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6417)
WordPress Plugin Wonder Video Embed Cross-Site Scripting (1.7)
PHP Resource Management Errors Vulnerability (CVE-2011-3267)
Atlassian Jira Improper Authentication Vulnerability (CVE-2021-41312)
WordPress Plugin Visual Form Builder Multiple Vulnerabilities (2.8.2)