Lucene search
MitreCVELIST:CVE-2021-40662HistoryMar 21, 2022 - 8:39 p.m.
CVE-2021-40662
2022-03-2120:39:46
mitre
www.cve.org
2
cross-site request forgery
chamilo lms
arbitrary commands
crafted url
user interaction
security vulnerability
cve-2021-40662
EPSS
0.004
Percentile
75.1%
A Cross-Site Request Forgery (CSRF) in Chamilo LMS 1.11.14 allows attackers to execute arbitrary commands on victim hosts via user interaction with a crafted URL.
References
febin0x4e4a.wordpress.com/2022/03/22/cve-2021-40662-chamilo-lms-1-11-14-rce/
febinj.medium.com/cve-2021-40662-chamilo-lms-1-11-14-rce-5301bad245d7
support.chamilo.org/projects/1/wiki/Security_issues#Issue-83-2021-08-11-High-impact-Moderate-risk-Cross-Site-Request-Forgery-CSRF-leading-to-Remote-Code-Execution
Related
prion
prion
Cross site request forgery (csrf)
2022-03-21 21:15:00
nvd
nvd
CVE-2021-40662
2022-03-21 21:15:08
osv
osv
CVE-2021-40662
2022-03-21 21:15:08
redhatcve
redhatcve
CVE-2021-40662
2022-03-22 05:32:47
cve
cve
CVE-2021-40662
2022-03-21 21:15:08
openvas
openvas
Chamilo LMS <= 1.11.14 Multiple Vulnerabilities
2022-03-23 00:00:00