Description
Chamilo LMS v1.11.13 lacks validation on the user modification form, allowing attackers to escalate privileges to Platform Admin.
Remediation
References
Related Vulnerabilities
Django Numeric Errors Vulnerability (CVE-2013-0306)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33324)
Jboss EAP Improper Initialization Vulnerability (CVE-2023-4503)
WordPress Plugin Batch Cat Security Bypass (0.3)
WordPress Plugin Web to Print Online Designer Security Bypass (2.3.0)