Chamilo LMS v1.11.13 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /blog/blog.php.Referenceshttps://support.chamilo.org/projects/1/wiki/Security_issues
