CVE-2020-23126

CVE-2020-23126

EPSS 0.6%

Chamilo LMS version 1.11.10 contains an XSS vulnerability in the personal profile edition form, affecting the user him/herself and social network friends.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.chamilo.org/projects/chamilo-18/wiki/Security_issues#Issue-42-2020-04-23-High-risk-low-impact-XSS-in-extended-users-profile-fields