Description
A zip slip vulnerability in the file upload function of Chamilo v1.11 allows attackers to execute arbitrary code via a crafted Zip file.
Remediation
References
Related Vulnerabilities
WordPress Plugin Marekkis Watermark Cross-Site Scripting (0.9.1)
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2017-7490)
WordPress Plugin WooCommerce Salesforce Integration Cross-Site Scripting (1.5.8)
WordPress Plugin FireStats 'firestats-wordpress.php' Remote File Include (1.6.1)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3180)