Unrated severityNVD Advisory· Published Dec 3, 2021· Updated Aug 4, 2024
CVE-2021-35413
CVE-2021-35413
Description
A remote code execution (RCE) vulnerability in course_intro_pdf_import.php of Chamilo LMS v1.11.x allows authenticated attackers to execute arbitrary code via a crafted .htaccess file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Chamilo/LMSdescription
- Range: ~1.11.0 && <1.11.12
Patches
Vulnerability mechanics
References
4- github.com/andrejspuler/writeups/tree/main/chamilo-lmsmitrex_refsource_MISC
- github.com/chamilo/chamilo-lms/commit/2e5c004b57d551678a1815500ef91524ba7bb757mitrex_refsource_MISC
- github.com/chamilo/chamilo-lms/commit/905a21037ebc9bc5369f0fb380177cb56f496f5cmitrex_refsource_MISC
- support.chamilo.org/projects/1/wiki/Security_issuesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.