First published: Thu Jan 30 2020(Updated: )
Chamilo 1.9.4 has XSS due to improper validation of user-supplied input by the chat.php script.
Credit: PSIRT-CNA@flexerasoftware.com
Affected Software | Affected Version | How to fix |
---|---|---|
Chamilo Chamilo | =1.9.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2013-0739 is medium with a CVSS score of 6.1.
CVE-2013-0739 affects Chamilo 1.9.4 by enabling cross-site scripting (XSS) attacks due to improper validation of user-supplied input by the chat.php script.
The Common Vulnerabilities and Exposures (CVE) ID for this vulnerability is CVE-2013-0739.
To fix the XSS vulnerability in Chamilo 1.9.4, it is recommended to apply the necessary security patches provided by Chamilo.
You can find more information about CVE-2013-0739 on the following websites: SecurityFocus (http://www.securityfocus.com/bid/58735) and IBM X-Force Exchange (https://exchange.xforce.ibmcloud.com/vulnerabilities/83105).