Chamilo LMS v1.11.x was discovered to contain a SQL injection via the doc parameter in main/plagiarism/compilatio/upload.php.
References
Configurations
Information
Published : 2021-12-03 14:15
Updated : 2021-12-06 11:13
NVD link : CVE-2021-35414
Mitre link : CVE-2021-35414
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
chamilo
- chamilo_lms