Vulnerability Details CVE-2023-39061
Cross Site Request Forgery (CSRF) vulnerability in Chamilo v.1.11 thru v.1.11.20 allows a remote authenticated privileged attacker to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.5%
CVSS Severity
CVSS v3 Score 3.5
References
- http://chamilo.com
- https://support.chamilo.org/projects/chamilo-18/wiki/Security_issues#Issue-123-2023-07-08-Moderate-impact-Moderate-risk-CSRF-through-admin-account-forum-posts
- http://chamilo.com
- https://support.chamilo.org/projects/chamilo-18/wiki/Security_issues#Issue-123-2023-07-08-Moderate-impact-Moderate-risk-CSRF-through-admin-account-forum-posts
Products affected by CVE-2023-39061
-
cpe:2.3:a:chamilo:chamilo:1.11
-
cpe:2.3:a:chamilo:chamilo:1.11.0
-
cpe:2.3:a:chamilo:chamilo:1.11.10
-
cpe:2.3:a:chamilo:chamilo:1.11.12
-
cpe:2.3:a:chamilo:chamilo:1.11.14
-
cpe:2.3:a:chamilo:chamilo:1.11.16
-
cpe:2.3:a:chamilo:chamilo:1.11.18
-
cpe:2.3:a:chamilo:chamilo:1.11.2
-
cpe:2.3:a:chamilo:chamilo:1.11.20
-
cpe:2.3:a:chamilo:chamilo:1.11.4
-
cpe:2.3:a:chamilo:chamilo:1.11.6
-
cpe:2.3:a:chamilo:chamilo:1.11.8