CVE-2025-52563 | Chamilo LMS up to 1.11.29 add_users_to_session.php page cross site scripting

Inserito da Angelo Barbosa | Mar 2, 2026 | CVE

A vulnerability classified as problematic has been found in Chamilo LMS up to 1.11.29. Affected by this vulnerability is an unknown functionality of the file session/add_users_to_session.php. This manipulation of the argument page causes cross site scripting.

This vulnerability appears as CVE-2025-52563. The attack may be initiated remotely. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2025-52563 | Chamilo LMS up to 1.11.29 add_users_to_session.php page cross site scripting

Post correlati

CVE-2023-50470 | SeaCMS 12.8 admin_video.php action cross site scripting

CVE-2024-3704 | OpenGnsys 1.1.1d sql injection

CVE-2025-68046 | ThemeHunk Contact Form & Lead Form Elementor Builder Plugin up to 2.0.1 on WordPress exposure of sensitive system information to an unauthorized control sphere

CVE-2025-34411 | EQS Convercent Whistleblowing Platform up to 2025-12-15 API Endpoint /GetLegalEntity authorization