Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Chamilo Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2023-3533 - Vulnerability Database
Chamilo

Chamilo Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2023-3533

Critical
Reference: CVE-2023-3533
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-3533
Title: Chamilo Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Path traversal in file upload functionality in /main/webservices/additional_webservices.php in Chamilo LMS lt v1.11.20 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via arbitrary file write.