Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, remote training, and online question answering. chamilo LMS is vulnerable to a SQL injection vulnerability that originates in the main plagiarism compilation upload.php, which was found to contain a SQL injection via the doc parameter x. No detailed vulnerability details are currently available.