Alex Mackey

CVE-2022-40407 WRITEUP HIGH WRITEUP

Chamilo 1.11 - Authenticated Remote Code Execution via Zip Slip in File Upload

A zip slip vulnerability in the file upload function of Chamilo v1.11 allows attackers to execute arbitrary code via a crafted Zip file.

CVSS 8.8

View Code