Description
Chamilo v1.11.x up to v1.11.18 was discovered to contain a cross-site scripting (XSS) vulnerability via the /feedback/comment field.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress File Upload Arbitrary File Upload (3.8.5)
MySQL CVE-2017-3651 Vulnerability (CVE-2017-3651)
WordPress Plugin Paid Business Listings Blind SQL Injection (1.0.2)
Moodle Credentials Management Errors Vulnerability (CVE-2014-7845)
MediaWiki Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-42040)