A vulnerability, which was classified as critical, was found in Chamilo up to 1.11.14 (Content Management System). Affected is some unknown functionality of the file main/inc/ajax/model.ajax.php. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.
Chamilo up to 1.11.14 model.ajax.php searchField/filters/filters2 sql injection
- Virtual Patching
- June 28, 2021
- 9:04 pm
CVE-2022-34066 : TEXERCISE UP TO 0.0.12 ON PYTHON BACKDOOR
Description The Texercise package in PyPI v0.0.1 to v0.0.12 was discovered to contain a code execution backdoor. This vulnerability allows
CVE-2022-32405 : SOURCECODESTER PRISON MANAGEMENT SYSTEM 1.0 VIEW_PRISON.PHP ID SQL INJECTION
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
CVE-2022-20651 : CISCO ADAPTIVE SECURITY DEVICE MANAGER LOG FILE
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker