Description
Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows an attacker to execute arbitrary code via the svkey parameter of the storageapi.php file.
References
infosecwriteups.com/...ss-site-scripting-stored-3fcb874ac7c1
Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows an attacker to execute arbitrary code via the svkey parameter of the storageapi.php file.
infosecwriteups.com/...ss-site-scripting-stored-3fcb874ac7c1
