Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2023-34944 - Vulnerability Database

Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2023-34944

Critical

Reference: CVE-2023-34944

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-34944

Title: Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability

Overview:

An arbitrary file upload vulnerability in the /fileUpload.lib.php component of Chamilo 1.11. up to v1.11.18 allows attackers to execute arbitrary code via uploading a crafted SVG file.