An issue in Chamilo v1.11.* up to v1.11.18 allows attackers to execute a Server-Side Request Forgery (SSRF) and obtain information on the services running on the server via crafted requests in the social and links tools.
CPE | Name | Operator | Version |
---|---|---|---|
chamilo_lms | ge | 1.11.0 | |
chamilo_lms | le | 1.11.18 |