Lucene search
K

59 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:57 a.m.2 views

CVE-2023-4226

Unrestricted file upload in /main/inc/ajax/work.ajax.php in Chamilo LMS = v1.11.24 allows authenticated attackers with learner role to obtain remote code execution via uploading of PHP files...

8.8CVSS8.2AI score0.02433EPSS
Exploits4References1
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.7 views

The vulnerability of the Chamilo LMS electronic learning and content management system lies in the lack of measures to neutralize special elements used within the operating system, allowing attackers to execute arbitrary SQL queries.

The vulnerability of the Chamilo LMS, a system for electronic teaching and content management, lies in the lack of measures taken to neutralize special elements used in the operating system. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary SQL...

8.7CVSS6AI score0.02603EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.5 views

The vulnerability of the vChamilo plugin of the eLearning and content management system Chamilo LMS lies in the lack of verification of the validity of XML objects’ sequences. This allows attackers to execute arbitrary SQL queries.

The vulnerability of the vChamilo plugin in the Chamilo LMS system is related to the lack of verification for the validity of XML objects’ sequences. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

8.5CVSS5.9AI score0.00708EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.5 views

The vulnerability of the Chamilo LMS electronic learning and content management system lies in the lack of measures to neutralize special elements used within the operating system, allowing attackers to execute arbitrary SQL queries.

The vulnerability of the Chamilo LMS, a system for electronic teaching and content management, lies in the lack of measures taken to neutralize special elements used in the operating system. Exploiting this vulnerability could allow a malicious actor to execute arbitrary SQL queries remotely...

8.7CVSS6AI score0.02657EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.8 views

The vulnerability of the Chamilo LMS electronic learning and content management system lies in the lack of verification of the validity of XML objects’ sequences. This allows attackers to execute arbitrary SQL queries.

The vulnerability of the Chamilo LMS, a system for electronic teaching and content management, lies in the lack of verification of the validity of XML objects’ sequences. Exploiting this vulnerability could allow an attacker, operating remotely, to execute arbitrary SQL queries...

8.5CVSS6AI score0.00733EPSS
Exploits1References6Affected Software1
CNNVD
CNNVD
added 2025/04/16 12:0 a.m.5 views

Chamilo LMS 安全漏洞

Chamilo LMS is an open source online learning and collaboration system from Chamilo Open Source. The system supports the creation of instructional content, remote training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version 1.11.28, which stems from th...

5.4CVSS5.9AI score0.003EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.3 views

Chamilo LMS 安全漏洞

Chamilo LMS is an open source online learning and collaboration system from Chamilo Open Source. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version v.1.11.26, which stems fro...

5.4CVSS6.8AI score0.00335EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.4 views

PT-2024-21932 · Unknown · Chamilo Lms

Name of the Vulnerable Software and Affected Versions: Chamilo LMS version 1.11.26 Description: A Cross Site Scripting issue allows a remote attacker to escalate privileges via a crafted script to the filename parameter of the home.php component. Recommendations: For Chamilo LMS version 1.11.26,...

7.1CVSS6.4AI score0.00699EPSS
Exploits2References7
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.4 views

Chamilo LMS 安全漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version 1.11.26, which stems...

7.1CVSS6AI score0.00699EPSS
Exploits2References2
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.3 views

Chamilo LMS Security Vulnerability

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS v1.11.24 and earlier versions,...

8.1CVSS6.9AI score0.76084EPSS
Exploits27References5
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.6 views

Chamilo LMS Security Vulnerability

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version v1.11.24 and prior...

8.8CVSS7AI score0.02433EPSS
Exploits6References5
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.5 views

Chamilo LMS Security Vulnerability

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS v1.11.20 and earlier versions,...

9.8CVSS7.3AI score0.68897EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/09/29 12:0 a.m.4 views

Chamilo LMS 代码问题漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS v1.11, which stems from a zip...

8.8CVSS8.3AI score0.01256EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/04/15 12:0 a.m.4 views

编号撤回

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, remote training, and online question answering. Chamilo LMS v1.11.13 contains a code injection vulnerability that could be exploited by a...

6.1AI score
Exploits0
CNNVD
CNNVD
added 2022/04/15 12:0 a.m.6 views

Chamilo LMS 代码问题漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association that supports the creation of instructional content, remote training, and online question answering. The system supports the creation of instructional content, remote training and online question...

8.8CVSS6AI score0.00801EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/04/15 12:0 a.m.4 views

Chamilo LMS 跨站脚本漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, remote training, and online question answering. Chamilo LMS v1.11.13 contains a cross-site scripting vulnerability that could be exploite...

6.1CVSS5.6AI score0.00573EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/03/21 12:0 a.m.4 views

Chamilo LMS 跨站请求伪造漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. Chamilo LMS version 1.11.14 is vulnerable to cross-site request forgery, which can be exploited by attackers to execute arbitrary commands on the victim host via user interaction with specially...

8.8CVSS5.8AI score0.01079EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/12/01 12:0 a.m.5 views

Chamilo LMS 跨站脚本漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, remote training, and online question answering, etc. A cross-site scripting vulnerability exists in Chamilo LMS, which stems from a...

6.1CVSS5.2AI score0.01346EPSS
Exploits1References5
CNVD
CNVD
added 2016/05/19 12:0 a.m.3 views

Chamlio LMS Cross-Site Scripting Vulnerability

Chamilo is an open source e-learning and content management system. A cross-site scripting vulnerability exists in Chamilo LMS, which allows remote attackers to inject malicious script code into the client side of the affected application module...

6.5AI score
Exploits0References1
Rows per page
Query Builder