CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-23126

Chamilo LMS version 1.11.10 contains an XSS vulnerability in the personal profile edition form, affecting the user him/herself and social network friends.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.0%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://support.chamilo.org/projects/chamilo-18/wiki/Security_issues#Issue-42-2020-04-23-High-risk-low-impact-XSS-in-extended-users-profile-fields
https://support.chamilo.org/projects/chamilo-18/wiki/Security_issues#Issue-42-2020-04-23-High-risk-low-impact-XSS-in-extended-users-profile-fields

Products affected by CVE-2020-23126

Chamilo » Chamilo Lms » Version: 1.11.10

cpe:2.3:a:chamilo:chamilo_lms:1.11.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-23126

Products

Pricing

Contact Us