First published: Thu Jan 30 2020(Updated: )
Chamilo 1.9.4 has Multiple XSS and HTML Injection Vulnerabilities: blog.php and announcements.php.
Credit: PSIRT-CNA@flexerasoftware.com
Affected Software | Affected Version | How to fix |
---|---|---|
Chamilo Chamilo | =1.9.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-0738 is a vulnerability found in Chamilo 1.9.4, where multiple XSS and HTML injection vulnerabilities are present in the files blog.php and announcements.php.
Chamilo 1.9.4 is affected by CVE-2013-0738.
CVE-2013-0738 has a severity rating of medium (6.1).
To fix CVE-2013-0738, it is recommended to update Chamilo to a version that includes the necessary security patches.
More information about CVE-2013-0738 can be found at the following references: [1] http://www.securityfocus.com/bid/58735 [2] https://exchange.xforce.ibmcloud.com/vulnerabilities/83104