CVE-2025-52468 | Chamilo LMS up to 1.11.29 CSV File Parser Last Name/First Name/Username cross site scripting

Inserito da Angelo Barbosa | Mar 2, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Chamilo LMS up to 1.11.29. This affects an unknown part of the component CSV File Parser. Performing a manipulation of the argument Last Name/First Name/Username results in cross site scripting.

This vulnerability is known as CVE-2025-52468. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2025-52468 | Chamilo LMS up to 1.11.29 CSV File Parser Last Name/First Name/Username cross site scripting

Post correlati

CVE-2024-43140 | G5Theme Ultimate Bootstrap Elements for Elementor Plugin up to 1.4.4 on WordPress path traversal

CVE-2025-5748 | WOLFBOX Level 2 EV Charger Tuya Communications Module routine (ZDI-25-327)

CVE-2025-22221 | VMware Aria Operations for Logs up to 8.18.2 Agent Configuration cross site scripting

CVE-2026-2947 | rymcu forest up to 0.0.5 User Profile UserInfoController.java updateUserInfo cross site scripting