First published: Fri Apr 15 2022(Updated: )
Chamilo LMS v1.11.13 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /blog/blog.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Chamilo Chamilo | >=1.11.0<=1.11.16 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-27425 is a cross-site scripting (XSS) vulnerability in Chamilo LMS v1.11.13 via the /blog/blog.php component.
CVE-2022-27425 has a severity keyword of 'medium' and a severity value of 6.1.
Chamilo LMS versions 1.11.0 to 1.11.16 are affected by CVE-2022-27425.
To fix CVE-2022-27425, it is recommended to upgrade Chamilo LMS to a version beyond 1.11.16 or apply the necessary security patches.
Additional information about CVE-2022-27425 can be found at the following link: [https://support.chamilo.org/projects/1/wiki/Security_issues](https://support.chamilo.org/projects/1/wiki/Security_issues)