CVE-2018-20328
Chamilo LMS 1.11.8 contains a cross-site scripting (XSS) vulnerability in main/social/group_view.php within the social groups tool. The issue allows an authenticated user to affect other users under specific permission configurations granted by administrators. The vulnerability is described as lo...