Описание
Chamilo 1.11.16 is affected by an authenticated local file inclusion vulnerability which allows authenticated users with access to 'big file uploads' to copy/move files from anywhere in the file system into the web directory.
Ссылки
- Issue TrackingVendor Advisory
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:chamilo:chamilo:1.11.16:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.00435
Низкий
8.8 High
CVSS3
Дефекты
CWE-434
CWE-434
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
Chamilo 1.11.16 is affected by an authenticated local file inclusion vulnerability which allows authenticated users with access to 'big file uploads' to copy/move files from anywhere in the file system into the web directory.
EPSS
Процентиль: 62%
0.00435
Низкий
8.8 High
CVSS3
Дефекты
CWE-434
CWE-434