This Metasploit module exploits an unauthenticated remote command execution vulnerability that affects Chamilo versions 1.11.18 and below. Due to a functionality called Chamilo Rapid to easily convert ...

Continue Reading

August 25, 2023

Chamilo is an e-learning platform, also called Learning Management Systems (LMS). This module exploits an unauthenticated remote command execution vulnerability that affects Chamilo versions `1.11.18` ...

Continue Reading

August 25, 2023

Post ContentRead More ...

Continue Reading

August 24, 2023

## Releases * Ubuntu 23.04 * Ubuntu 22.04 LTS ## Packages * php8.1 - HTML-embedded scripting language interpreter It was discovered that PHP incorrectly handled certain XML files. An attacker co ...

Continue Reading

August 24, 2023

- CVE-2023-3823: Fix external entity loading in XML without enabling by sanitizing libxml2 globals before parsing - CVE-2023-3824: Fix buffer mismanagement in phar_dir_read()Read More ...

Continue Reading

August 21, 2023

An authenticated attacker with guest privileges or higher can cause the iControl SOAP process to terminate by sending undisclosed requests.  Note: Software versions which have reached End of Tec ...

Continue Reading

August 15, 2023

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Satos Satos Mobile allows SQL Injection through SOAP Parameter Tampering.This issue affects Satos ...

Continue Reading

August 15, 2023

A missing authorization check in multiple SOAP endpoints of the Insider Threat Management Server enables an attacker on an adjacent network to read and write unauthorized objects. Successful exploitat ...

Continue Reading

August 15, 2023