Lucene search
K

CVE-2012-4029

🗓️ 08 Feb 2020 17:44:19Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 124 Views🌐 WEB

Cross-site scripting vulnerability in Chamilo LMS allows remote attackers to inject arbitrary web script or HTML

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2012-4029
8 Feb 202020:33
circl
Cvelist
CVE-2012-4029
8 Feb 202017:44
cvelist
EUVD
EUVD-2012-3973
7 Oct 202500:30
euvd
NVD
CVE-2012-4029
8 Feb 202018:15
nvd
Packet Storm
Chamilo 1.8.8.4 XSS / File Deletion
27 Aug 201200:00
packetstorm
Prion
Cross site scripting
8 Feb 202018:15
prion
securityvulns
Chamilo 1.8.8.4 Multiple Vulnerabilities
2 Sep 201200:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2 Sep 201200:00
securityvulns
NVD
Node
chamilochamiloRange<1.8.8.6
ParameterPositionPathDescriptionCWE
category_namequery paramchamilo-1.8.8.4/main/dropbox/index.phpStored XSS via category_name parameter in addsentcategory action.CWE-79
idquery paramchamilo/chamilo-1.8.8.4/main/dropbox/index.phpUnauthorized deletion of sent category by bruteforcing category id (deletesentcategory).CWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Jun 2026 23:44Current
6Medium risk
Vulners AI Score6
CVSS 24.3
CVSS 3.16.1
EPSS0.01442
124