CVE-2023-34944

Published June 13th, 2023

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

An arbitrary file upload vulnerability in the /fileUpload.lib.php component of Chamilo 1.11.* up to v1.11.18 allows attackers to execute arbitrary code via uploading a crafted SVG file.

chamilo/chamilo-lms

Chamilo is a learning management system focused on ease of use and accessibility

GitHub

958