Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Chamilo: OS Command Injection in /main/admin/sub_language_ajax.inc.php via POST new_language parameter
Vulnerability Description
Chamilo is a learning management system. Prior to version 1.11.30, there is an OS Command Injection vulnerability in /main/admin/sub_language_ajax.inc.php via the POST new_language parameter. This issue has been patched in version 1.11.30.
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Chamilo 操作系统命令注入漏洞
Vulnerability Description
Chamilo是Chamilo开源的一个学习管理系统。 Chamilo 1.11.30之前版本存在操作系统命令注入漏洞,该漏洞源于文件/main/admin/sub_language_ajax.inc.php对POST参数new_language处理不当,可能导致OS命令注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A