Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A user without privileges in Chamilo LMS 1.11.14 can send an invitation message to another user, e.g., the administrator, through main/social/search.php, main/inc/lib/social.lib.php and steal cookies or execute arbitrary code on the administration side via a stored XSS vulnerability via social network the send invitation feature.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Chamilo LMS 跨站脚本漏洞
Vulnerability Description
Chamilo LMS是Chamilo协会的一套开源的在线学习和协作系统。该系统支持创建教学内容、远程培训和在线答题等。 Chamilo LMS 1.11.14版本存在安全漏洞,攻击者可利用该漏洞窃取cookie或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A