Lucene search
+L

4 matches found

NVD
NVD
added 2023/11/28 8:15 a.m.27 views

CVE-2023-4221

Command injection in main/lp/openofficepresentation.class.php in Chamilo LMS = v1.11.24 allows users permitted to upload Learning Paths to obtain remote code execution via improper neutralisation of special characters...

8.8CVSS0.03528EPSS
Exploits2References4
CVE
CVE
added 2023/11/28 7:13 a.m.69 views

CVE-2023-4221

Summary: CVE-2023-4221/4222 affect Chamilo LMS up to version 1.11.24. Technical details in connected docs show command injection vulnerabilities in specific PHP classes used for Learning Paths uploads: main/lp/openoffice_presentation.class.php (CVE-2023-4221) and main/lp/openoffice_text_document....

8.8CVSS8.4AI score0.03528EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2023/11/28 7:13 a.m.34 views

CVE-2023-4221 Chamilo LMS Learning Path PPT2LP Command Injection Vulnerability

Command injection in main/lp/openofficepresentation.class.php in Chamilo LMS = v1.11.24 allows users permitted to upload Learning Paths to obtain remote code execution via improper neutralisation of special characters...

7.2CVSS9.4AI score0.03528EPSS
Exploits2References4
OSV
OSV
added 2023/11/28 7:13 a.m.28 views

CVE-2023-4221 Chamilo LMS Learning Path PPT2LP Command Injection Vulnerability

Command injection in main/lp/openofficepresentation.class.php in Chamilo LMS = v1.11.24 allows users permitted to upload Learning Paths to obtain remote code execution via improper neutralisation of special characters...

7.2CVSS7.8AI score0.03528EPSS
Exploits2References6
Rows per page
Query Builder