Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:53 a.m.12 views

CVE-2023-3368

Command injection in /main/webservices/additionalwebservices.php in Chamilo LMS = v1.11.20 allows unauthenticated attackers to obtain remote code execution via improper neutralisation of special characters. This is a bypass of CVE-2023-34960...

9.8CVSS7.7AI score0.99192EPSS
Exploits10References1
NVD
NVD
added 2023/11/28 7:15 a.m.38 views

CVE-2023-3368

Command injection in /main/webservices/additionalwebservices.php in Chamilo LMS = v1.11.20 allows unauthenticated attackers to obtain remote code execution via improper neutralisation of special characters. This is a bypass of CVE-2023-34960...

9.8CVSS0.68897EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/11/28 7:5 a.m.62 views

CVE-2023-3368 Chamilo LMS Unauthenticated Command Injection

Command injection in /main/webservices/additionalwebservices.php in Chamilo LMS = v1.11.20 allows unauthenticated attackers to obtain remote code execution via improper neutralisation of special characters. This is a bypass of CVE-2023-34960...

9.8CVSS10AI score0.68897EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/11/28 7:5 a.m.8 views

CVE-2023-3368 Chamilo LMS Unauthenticated Command Injection

Command injection in /main/webservices/additionalwebservices.php in Chamilo LMS = v1.11.20 allows unauthenticated attackers to obtain remote code execution via improper neutralisation of special characters. This is a bypass of CVE-2023-34960...

9.8CVSS10AI score0.68897EPSS
Exploits1References4
OSV
OSV
added 2023/11/28 7:5 a.m.36 views

CVE-2023-3368 Chamilo LMS Unauthenticated Command Injection

Command injection in /main/webservices/additionalwebservices.php in Chamilo LMS = v1.11.20 allows unauthenticated attackers to obtain remote code execution via improper neutralisation of special characters. This is a bypass of CVE-2023-34960...

9.8CVSS7.8AI score0.68897EPSS
Exploits1References7
CVE
CVE
added 2023/11/28 7:5 a.m.233 views

CVE-2023-3368

CVE-2023-3368 corresponds to an unauthenticated command injection in Chamilo LMS, exploited via the endpoint /main/webservices/additional_webservices.php. The public details state that Chamilo LMS

9.8CVSS9.9AI score0.68897EPSS
In wildExploits1References4Affected Software1
Rows per page
Query Builder