Description
Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the course categories' definition.
Remediation
References
Related Vulnerabilities
WordPress Plugin BuddyPress Global Search Cross-Site Scripting (1.1.0)
WordPress Plugin Shoppable Images Multiple Vulnerabilities (1.0.0)
WordPress Plugin Ultimate Maps by Supsystic Cross-Site Scripting (1.2.4)
WordPress Plugin WP-Stats-Dashboard Multiple Cross-Site Scripting Vulnerabilities (2.6.5.1)