Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2022/03/23 12:0 a.m.15 views

Chamilo LMS <= 1.11.14 Multiple Vulnerabilities

Chamilo LMS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:chamilo:chamilolms"; if...

8.8CVSS7AI score0.01079EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2022/03/22 5:32 a.m.53 views

CVE-2021-40662

A Cross-Site Request Forgery CSRF in Chamilo LMS 1.11.14 allows attackers to execute arbitrary commands on victim hosts via user interaction with a crafted URL...

8.8CVSS7.2AI score0.01079EPSS
Exploits1References3
Circl
Circl
added 2022/03/21 11:26 p.m.6 views

CVE-2021-40662

creationtimestamp| type| source ---|---|--- 2022-03-21 23:26:40+00:00| seen| https://t.me/cibsecurity/39350 2022-11-23 18:58:28+00:00| published-proof-of-concept| Telegram/YFXYCCVQZRGOcIyKtXLJhlRicEOjhhsvwkUuMglsfVEAzkc 2022-11-23 20:50:09+00:00| published-proof-of-concept| https://t.me/cKure/104...

8.8CVSS8.1AI score0.01079EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/03/21 9:15 p.m.4 views

CVE-2021-40662

A Cross-Site Request Forgery CSRF in Chamilo LMS 1.11.14 allows attackers to execute arbitrary commands on victim hosts via user interaction with a crafted URL...

8.8CVSS7.6AI score0.01079EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/03/21 8:39 p.m.23 views

CVE-2021-40662

A Cross-Site Request Forgery CSRF in Chamilo LMS 1.11.14 allows attackers to execute arbitrary commands on victim hosts via user interaction with a crafted URL...

9.2AI score0.01079EPSS
Exploits1References3
CVE
CVE
added 2022/03/21 8:39 p.m.118 views

CVE-2021-40662

Summary: CVE-2021-40662 describes a CSRF flaw in Chamilo LMS 1.11.14 that allows an attacker to cause a victim to execute arbitrary commands on their host via interaction with a crafted URL. The connected documents corroborate a CSRF leading to potentially remote command execution, but do not pro...

8.8CVSS9AI score0.01079EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder