← Back to CVE List
CVE-2024-27524
Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows a remote attacker to escalate privileges via a crafted script to the filename parameter of the new_ticket.php component.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt