Description
Chamilo LMS version 1.11.10 contains an XSS vulnerability in the personal profile edition form, affecting the user him/herself and social network friends.
Remediation
References
Related Vulnerabilities
WordPress Plugin Roomcloud Multiple Cross-Site Scripting Vulnerabilities (1.1)
Joomla! Core 3.x.x Multiple Vulnerabilities (3.0.0 - 3.10.6)
GeoServer Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-36401)
WordPress Plugin SpamBam Key Calculation Security Bypass (2.1)
WordPress 'admin-ajax.php' SQL Injection Vulnerability (2.1.3)