First published: Fri Apr 15 2022(Updated: )
A reflected cross-site scripting (XSS) vulnerability in Chamilo LMS v1.11.13 allows attackers to execute arbitrary web scripts or HTML via user interaction with a crafted URL.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Chamilo Chamilo Lms | >=1.11.0<=1.11.16 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-27422 is a reflected cross-site scripting (XSS) vulnerability in Chamilo LMS v1.11.13.
The vulnerability allows attackers to execute arbitrary web scripts or HTML via user interaction with a crafted URL.
CVE-2022-27422 has a severity rating of 6.1 (medium).
Chamilo LMS versions 1.11.0 to 1.11.16 are affected by CVE-2022-27422.
To fix CVE-2022-27422, update Chamilo LMS to a version beyond 1.11.16.