Description

Cross Site Request Forgery (CSRF) vulnerability in Chamilo v.1.11 thru v.1.11.20 allows a remote authenticated privileged attacker to execute arbitrary code.

Remediation

References

CVE-2023-39061

Related Vulnerabilities

phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-3239)

Oracle Database Server Improper Input Validation Vulnerability (CVE-2020-1953)

MySQL CVE-2019-2747 Vulnerability (CVE-2019-2747)

WordPress Plugin Download Theme Arbitrary Directory Download (1.0.2)

WordPress Plugin WP Review Unspecified Vulnerability (5.2.1)

Severity

Low

Classification

CVE-2023-39061 CWE-352 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities