Lucene search
K

1454 matches found

Exploit DB
Exploit DB
added 2013/12/03 12:0 a.m.51 views

Chamilo Lms 1.9.6 - 'profile.php?password' SQL Injection

Advisory ID: HTB23182 Product: Chamilo LMS Vendor: Chamilo Association Vulnerable Versions: 1.9.6 and probably prior Tested Version: 1.9.6 Advisory Publication: November 6, 2013 without technical details Vendor Notification: November 6, 2013 Vendor Patch: November 9, 2013 Public Disclosure:...

6CVSS6.6AI score0.02739EPSS
Exploits6
0day.today
0day.today
added 2013/11/27 12:0 a.m.80 views

Chamilo LMS 1.9.6 SQL Injection Vulnerability

Chamilo LMS version 1.9.6 suffers from a remote SQL injection vulnerability. Vendor: Chamilo Association Vulnerable Versions: 1.9.6 and probably prior Tested Version: 1.9.6 Advisory Publication: November 6, 2013 without technical details Vendor Notification: November 6, 2013 Vendor Patch: Novembe...

6CVSS7.6AI score0.02739EPSS
Exploits6
Packet Storm
Packet Storm
added 2013/11/27 12:0 a.m.94 views

Chamilo LMS 1.9.6 SQL Injection

Advisory ID: HTB23182 Product: Chamilo LMS Vendor: Chamilo Association Vulnerable Versions: 1.9.6 and probably prior Tested Version: 1.9.6 Advisory Publication: November 6, 2013 without technical details Vendor Notification: November 6, 2013 Vendor Patch: November 9, 2013 Public Disclosure:...

6CVSS0.4AI score0.02739EPSS
Exploits6
htbridge
htbridge
added 2013/11/06 12:0 a.m.121 views

SQL Injection in Chamilo LMS

High-Tech Bridge Security Research Lab discovered vulnerability in Chamilo LMS, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in Chamilo LMS: CVE-2013-6787 The vulnerability exists due to insufficient validation of "password0" HTTP POST parameter passed to...

6CVSS7.6AI score0.02739EPSS
Exploits6Affected Software1
securityvulns
securityvulns
added 2012/09/02 12:0 a.m.98 views

Chamilo 1.8.8.4 Multiple Vulnerabilities

Chamilo 1.8.8.4 Multiple Vulnerabilities ======================== CVE: CVE-2012-4029 Issue: Reflected XSS PHPSELF in third-party app, Stored XSS PHPSELF XSS http://chamilo-1.8.8.4/main/inc/lib/phpdocx/pdf/www/examples.php/'"img src=404 onerror=alert1 Stored XSS unfiltered input categoryname...

1.1AI score0.01442EPSS
Exploits2
Packet Storm
Packet Storm
added 2012/08/27 12:0 a.m.51 views

Chamilo 1.8.8.4 XSS / File Deletion

Chamilo 1.8.8.4 Multiple Vulnerabilities ======================== CVE: CVE-2012-4029 Issue: Reflected XSS PHPSELF in third-party app, Stored XSS PHPSELF XSS http://chamilo-1.8.8.4/main/inc/lib/phpdocx/pdf/www/examples.php/'" Stored XSS unfiltered input categoryname...

0.2AI score0.01442EPSS
Exploits2
OpenVAS
OpenVAS
added 2011/02/08 12:0 a.m.10 views

Chamilo Detection

This host is running Chamilo, an e-learning portal. OpenVAS Vulnerability Test $Id: gbchamilodetect.nasl 5723 2017-03-24 15:46:34Z cfi $ Chamilo Detection Authors: Michael Meyer Copyright: Copyright c 2011 Greenbone Networks GmbH This program is free software; you can redistribute it and/or modif...

Exploits0References1
OpenVAS
OpenVAS
added 2011/02/08 12:0 a.m.7 views

Dokeos Multiple Remote File Disclosure Vulnerabilities

Dokeos and Chamilo are prone to multiple file-disclosure vulnerabilities because they fail to properly sanitize user- supplied input. An attacker can exploit these vulnerabilities to view local files in the context of the webserver process. This may aid in further attacks. Dokeos versions 1.8.6.1...

Exploits0References4
securityvulns
securityvulns
added 2011/02/08 12:0 a.m.76 views

Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure

Affected products ================= Dokeos 1.8.6.1 / 2.0 Chamilo 1.8.7.1 Resume ====== Two file disclosure flaws exists on these LMS platforms, which could allow an attacker registered on the system to obtain files from the server, i.e your database configuration file, or any other file readeable...

1.1AI score
Exploits0
OpenVAS
OpenVAS
added 2011/02/08 12:0 a.m.8 views

Chamilo Multiple Remote File Disclosure Vulnerabilities

Dokeos and Chamilo are prone to multiple file-disclosure vulnerabilities because they fail to properly sanitize user- supplied input. An attacker can exploit these vulnerabilities to view local files in the context of the webserver process. This may aid in further attacks. Dokeos versions 1.8.6.1...

0.2AI score
Exploits0References4
OpenVAS
OpenVAS
added 2011/02/08 12:0 a.m.11 views

Chamilo LMS Detection (HTTP)

HTTP based detection of Chamilo LMS. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103070";...

7.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2011/02/08 12:0 a.m.15 views

Chamilo LMS < 1.8.8 Multiple Remote File Disclosure Vulnerabilities

Chamilo LMS is prone to multiple file disclosure vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.2AI score
Exploits0References5
0day.today
0day.today
added 2011/02/06 12:0 a.m.14 views

Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure

Exploit for php platform in category web applications Title: Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure Date: 2011/01/31 Author: beford Software Link: http://www.dokeos.com/download/dokeos-1.8.6.1.zip http://chamilo.googlecode.com/files/chamilo-1.8.7.1-stable.tar.gz Affected products...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/02/05 12:0 a.m.21 views

Chamilo 1.8.7 / Dokeos 1.8.6 - Remote File Disclosure

Title: Chamilo 1.8.7 / Dokeos 1.8.6 Remote File Disclosure Date: 2011/01/31 Author: beford Software Link: http://www.dokeos.com/download/dokeos-1.8.6.1.zip http://chamilo.googlecode.com/files/chamilo-1.8.7.1-stable.tar.gz Affected products ================= Dokeos 1.8.6.1 / 2.0 Chamilo 1.8.7.1...

7.4AI score
Exploits0
Rows per page
Query Builder