Vulnerabilities

CVE-2012-4029

by Fred · 08/02/2020

Cross-site scripting (XSS) vulnerability in main/dropbox/index.php in Chamilo LMS before 1.8.8.6 allows remote attackers to inject arbitrary web script or HTML via the category_name parameter in an addsentcategory action.

Date published : 2020-02-08

http://support.chamilo.org/attachments/download/2863/chamilo-1.8.8.4-to-1.8.8.6.patch

https://packetstormsecurity.com/files/115927/Chamilo-1.8.8.4-XSS-File-Deletion.html

Similar

Tags: Cybersecurity Alert