Lucene search
K

1454 matches found

0day.today
0day.today
added 2018/10/07 12:0 a.m.23 views

Chamilo LMS 1.11.8 - firstname Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Chamilo LMS 1.11.8 - 'firstname' Cross-Site Scripting Author: Cakes Vendor Homepage: https://chamilo.org Software Link: https://github.com/chamilo/chamilo-lms/releases/download/v1.11.8/chamilo-1.11.8-php5.zip Tested Version:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/10/06 12:0 a.m.75 views

Chamilo LMS 1.11.8 - firstname Cross-Site Scripting

Chamilo LMS 1.11.8 - firstname Cross-Site Scripting Exploit Title: Chamilo LMS 1.11.8 - 'firstname' Cross-Site Scripting Author: Cakes Discovery Date: 2018-10-06 Vendor Homepage: https://chamilo.org Software Link:...

6.8AI score
Exploits0
0day.today
0day.today
added 2018/10/06 12:0 a.m.37 views

Chamilo LMS 1.11.8 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Chamilo LMS 1.11.8 - Cross-Site Scripting Author: Cakes Vendor Homepage: https://chamilo.org Software Link: https://github.com/chamilo/chamilo-lms/releases/download/v1.11.8/chamilo-1.11.8-php5.zip Tested Version: 1.11.8 for php5...

Exploits0
Exploit DB
Exploit DB
added 2018/10/06 12:0 a.m.21 views

Chamilo LMS 1.11.8 - 'firstname' Cross-Site Scripting

Exploit Title: Chamilo LMS 1.11.8 - 'firstname' Cross-Site Scripting Author: Cakes Discovery Date: 2018-10-06 Vendor Homepage: https://chamilo.org Software Link: https://github.com/chamilo/chamilo-lms/releases/download/v1.11.8/chamilo-1.11.8-php5.zip Tested Version: 1.11.8 for php5 Tested on OS:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/10/05 12:0 a.m.10 views

Chamilo LMS 1.11.8 - Cross-Site Scripting

Chamilo LMS 1.11.8 - Cross-Site Scripting Exploit Title: Chamilo LMS 1.11.8 - Cross-Site Scripting Author: Cakes Discovery Date: 2018-10-05 Vendor Homepage: https://chamilo.org Software Link: https://github.com/chamilo/chamilo-lms/releases/download/v1.11.8/chamilo-1.11.8-php5.zip Tested Version:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2018/10/05 12:0 a.m.33 views

Chamilo LMS 1.11.8 Cross Site Scripting

Exploit Title: Chamilo LMS 1.11.8 - Cross-Site Scripting Author: Cakes Discovery Date: 2018-10-05 Vendor Homepage: https://chamilo.org Software Link: https://github.com/chamilo/chamilo-lms/releases/download/v1.11.8/chamilo-1.11.8-php5.zip Tested Version: 1.11.8 for php5 Tested on OS: Kali Linux...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/10/05 12:0 a.m.20 views

Chamilo LMS 1.11.8 - Cross-Site Scripting

Exploit Title: Chamilo LMS 1.11.8 - Cross-Site Scripting Author: Cakes Discovery Date: 2018-10-05 Vendor Homepage: https://chamilo.org Software Link: https://github.com/chamilo/chamilo-lms/releases/download/v1.11.8/chamilo-1.11.8-php5.zip Tested Version: 1.11.8 for php5 Tested on OS: Kali Linux...

7.4AI score
Exploits0
NVD
NVD
added 2018/07/23 3:29 p.m.23 views

CVE-2018-1999019

Chamilo LMS version 11.x contains an Unserialization vulnerability in the "hash" GET parameter for the api endpoint located at /webservices/api/v2.php that can result in Unauthenticated remote code execution. This attack appear to be exploitable via a simple GET request to the api endpoint. This...

9.8CVSS9.8AI score0.03413EPSS
Exploits0References2
Prion
Prion
added 2018/07/23 3:29 p.m.18 views

Remote code execution

Chamilo LMS version 11.x contains an Unserialization vulnerability in the "hash" GET parameter for the api endpoint located at /webservices/api/v2.php that can result in Unauthenticated remote code execution. This attack appear to be exploitable via a simple GET request to the api endpoint. This...

7.5CVSS9.7AI score0.03413EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/07/23 3:29 p.m.12 views

CVE-2018-1999019

Chamilo LMS version 11.x contains an Unserialization vulnerability in the "hash" GET parameter for the api endpoint located at /webservices/api/v2.php that can result in Unauthenticated remote code execution. This attack appear to be exploitable via a simple GET request to the api endpoint. This...

9.8CVSS7.8AI score
Exploits0References2
Cvelist
Cvelist
added 2018/07/23 3:0 p.m.19 views

CVE-2018-1999019

Chamilo LMS version 11.x contains an Unserialization vulnerability in the "hash" GET parameter for the api endpoint located at /webservices/api/v2.php that can result in Unauthenticated remote code execution. This attack appear to be exploitable via a simple GET request to the api endpoint. This...

9.8AI score0.03413EPSS
Exploits0References2
CVE
CVE
added 2018/07/23 3:0 p.m.63 views

CVE-2018-1999019

CVE-2018-1999019 concerns Chamilo LMS 11.x, where an Unserialization vulnerability in the GET parameter "hash" of the /webservices/api/v2.php endpoint enables unauthenticated remote code execution. The issue can be exploited with a simple GET request to the API. The vulnerability appears fixed af...

9.8CVSS9.7AI score0.03413EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2016/05/19 12:0 a.m.2 views

Chamlio LMS Cross-Site Scripting Vulnerability

Chamilo is an open source e-learning and content management system. A cross-site scripting vulnerability exists in Chamilo LMS, which allows remote attackers to inject malicious script code into the client side of the affected application module...

6.5AI score
Exploits0References1
CNVD
CNVD
added 2016/04/16 12:0 a.m.3 views

Chamilo LMS Cross-Site Scripting Vulnerability (CNVD-2016-02403)

Chamilo LMS is an open source online learning and collaboration system developed by the Chamilo Association. The system supports the creation of instructional content, distance training and online question and answer sessions. Chamilo LMS suffers from a cross-site scripting vulnerability that ste...

6.7AI score
Exploits0References1
CNVD
CNVD
added 2016/04/16 12:0 a.m.2 views

Chamilo LMS SQL Injection Vulnerability

Chamilo LMS is an open source online learning and collaboration system developed by the Chamilo Association. The system supports the creation of instructional content, distance training and online question and answer sessions. Chamilo LMS suffers from SQL injection vulnerabilities that stem from...

8.4AI score
Exploits0References1
Packet Storm
Packet Storm
added 2016/03/16 12:0 a.m.43 views

Chamilo LMS 1.10.2 Cross Site Scripting

Document Title: =============== Chamlio LMS v1.10.2 - Profile Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1781 Release Date: ============= 2016-03-14 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2016/03/13 12:0 a.m.46 views

Chamlio LMS v1.10.2 - (Profile) Persistent Web Vulnerability

Document Title: =============== Chamlio LMS v1.10.2 - Profile Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1781 Release Date: ============= 2016-03-13 Vulnerability Laboratory ID VL-ID: ====================================...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2016/02/19 12:0 a.m.36 views

Chamilo LMS IDOR - messageId Delete POST Injection

Chamilo LMS IDOR - messageId Delete POST Injection Document Title: =============== Chamilo LMS IDOR - messageId Delete POST Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1720 Video: https://www.youtube.com/watch?v=3ApPhUIk12Y Relea...

7.7AI score
Exploits0
0day.today
0day.today
added 2016/02/19 12:0 a.m.42 views

Chamilo LMS IDOR - (messageId) Delete POST Injection

Exploit for php platform in category web applications Document Title: =============== Chamilo LMS IDOR - messageId Delete POST Inject Vulnerability Video: https://www.youtube.com/watch?v=3ApPhUIk12Y Product & Service Introduction: =============================== Chamilo is an open-source under...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/02/19 12:0 a.m.40 views

Chamilo LMS Insecure Direct Object Reference

Document Title: =============== Chamilo LMS IDOR - messageId Delete POST Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1720 Video: https://www.youtube.com/watch?v=3ApPhUIk12Y Release Date: ============= 2016-02-15 Vulnerability...

7.4AI score
Exploits0
Rows per page
Query Builder