1454 matches found
Chamilo Lms 1.9.6 - 'profile.php?password' SQL Injection
Advisory ID: HTB23182 Product: Chamilo LMS Vendor: Chamilo Association Vulnerable Versions: 1.9.6 and probably prior Tested Version: 1.9.6 Advisory Publication: November 6, 2013 without technical details Vendor Notification: November 6, 2013 Vendor Patch: November 9, 2013 Public Disclosure:...
Chamilo LMS 1.9.6 SQL Injection Vulnerability
Chamilo LMS version 1.9.6 suffers from a remote SQL injection vulnerability. Vendor: Chamilo Association Vulnerable Versions: 1.9.6 and probably prior Tested Version: 1.9.6 Advisory Publication: November 6, 2013 without technical details Vendor Notification: November 6, 2013 Vendor Patch: Novembe...
Chamilo LMS 1.9.6 SQL Injection
Advisory ID: HTB23182 Product: Chamilo LMS Vendor: Chamilo Association Vulnerable Versions: 1.9.6 and probably prior Tested Version: 1.9.6 Advisory Publication: November 6, 2013 without technical details Vendor Notification: November 6, 2013 Vendor Patch: November 9, 2013 Public Disclosure:...
SQL Injection in Chamilo LMS
High-Tech Bridge Security Research Lab discovered vulnerability in Chamilo LMS, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in Chamilo LMS: CVE-2013-6787 The vulnerability exists due to insufficient validation of "password0" HTTP POST parameter passed to...
Chamilo 1.8.8.4 Multiple Vulnerabilities
Chamilo 1.8.8.4 Multiple Vulnerabilities ======================== CVE: CVE-2012-4029 Issue: Reflected XSS PHPSELF in third-party app, Stored XSS PHPSELF XSS http://chamilo-1.8.8.4/main/inc/lib/phpdocx/pdf/www/examples.php/'"img src=404 onerror=alert1 Stored XSS unfiltered input categoryname...
Chamilo 1.8.8.4 XSS / File Deletion
Chamilo 1.8.8.4 Multiple Vulnerabilities ======================== CVE: CVE-2012-4029 Issue: Reflected XSS PHPSELF in third-party app, Stored XSS PHPSELF XSS http://chamilo-1.8.8.4/main/inc/lib/phpdocx/pdf/www/examples.php/'" Stored XSS unfiltered input categoryname...
Chamilo Detection
This host is running Chamilo, an e-learning portal. OpenVAS Vulnerability Test $Id: gbchamilodetect.nasl 5723 2017-03-24 15:46:34Z cfi $ Chamilo Detection Authors: Michael Meyer Copyright: Copyright c 2011 Greenbone Networks GmbH This program is free software; you can redistribute it and/or modif...
Dokeos Multiple Remote File Disclosure Vulnerabilities
Dokeos and Chamilo are prone to multiple file-disclosure vulnerabilities because they fail to properly sanitize user- supplied input. An attacker can exploit these vulnerabilities to view local files in the context of the webserver process. This may aid in further attacks. Dokeos versions 1.8.6.1...
Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure
Affected products ================= Dokeos 1.8.6.1 / 2.0 Chamilo 1.8.7.1 Resume ====== Two file disclosure flaws exists on these LMS platforms, which could allow an attacker registered on the system to obtain files from the server, i.e your database configuration file, or any other file readeable...
Chamilo Multiple Remote File Disclosure Vulnerabilities
Dokeos and Chamilo are prone to multiple file-disclosure vulnerabilities because they fail to properly sanitize user- supplied input. An attacker can exploit these vulnerabilities to view local files in the context of the webserver process. This may aid in further attacks. Dokeos versions 1.8.6.1...
Chamilo LMS Detection (HTTP)
HTTP based detection of Chamilo LMS. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103070";...
Chamilo LMS < 1.8.8 Multiple Remote File Disclosure Vulnerabilities
Chamilo LMS is prone to multiple file disclosure vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure
Exploit for php platform in category web applications Title: Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure Date: 2011/01/31 Author: beford Software Link: http://www.dokeos.com/download/dokeos-1.8.6.1.zip http://chamilo.googlecode.com/files/chamilo-1.8.7.1-stable.tar.gz Affected products...
Chamilo 1.8.7 / Dokeos 1.8.6 - Remote File Disclosure
Title: Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure Date: 2011/01/31 Author: beford Software Link: http://www.dokeos.com/download/dokeos-1.8.6.1.zip http://chamilo.googlecode.com/files/chamilo-1.8.7.1-stable.tar.gz Affected products ================= Dokeos 1.8.6.1 / 2.0 Chamilo 1.8.7.1...