Chamilo LMS version 1.11.14 suffers from a persistent cross site scripting vulnerability. Continue reading...