Description

Cross Site Request Forgery (CSRF) vulnerability in Chamilo v.1.11 thru v.1.11.20 allows a remote authenticated privileged attacker to execute arbitrary code.

Remediation

References

CVE-2023-39061

Related Vulnerabilities

WordPress Plugin User Control SQL Injection (2.1.0)

Oracle JRE CVE-2013-0437 Vulnerability (CVE-2013-0437)

WordPress Plugin Testimonial WordPress-AP Custom Testimonial includes Backdoor [Only if downloaded via the vendor website] (1.4.6)

WebLogic CVE-2019-2856 Vulnerability (CVE-2019-2856)

WordPress 2.1.1 Command Execution Backdoor Vulnerability (2.1.1)

Severity

Low

Classification

CVE-2023-39061 CWE-352 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities