Description
Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section.
Remediation
References
Related Vulnerabilities
phpMyAdmin Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2020-22278)
Ruby on Rails Uncontrolled Resource Consumption Vulnerability (CVE-2021-22880)
MySQL CVE-2022-21311 Vulnerability (CVE-2022-21311)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5835)