Posted by Rehan Ahmed on Mar 19

I. Overview
========================================================
Chamilo LMS 1.9.10 or prior versions are prone to a multiple Cross-Site Scripting (Stored + Reflected) & CSRF
vulnerabilities. These vulnerabilities allows an attacker to gain control over valid user accounts in LMS, perform
operations on their behalf, redirect them to malicious sites, steal their credentials, and more.

II. Severity…