Lucene search
K

179 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:17 a.m.6 views

CVE-2024-30619

Chamilo LMS Version 1.11.26 is vulnerable to Incorrect Access Control. A non-authenticated attacker can request the number of messages and the number of online users via "/main/inc/ajax/message.ajax.php?a=getcountmessage" AND "/main/inc/ajax/online.ajax.php?a=getusersonline."...

7.5CVSS7AI score0.00377EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:21 a.m.4 views

CVE-2024-27525

Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows a remote attacker to escalate privileges via a crafted script to the filename parameter of the home.php component...

4.6CVSS6.7AI score0.00383EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:21 a.m.4 views

CVE-2024-27524

Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows a remote attacker to escalate privileges via a crafted script to the filename parameter of the newticket.php component...

7.1CVSS6.7AI score0.00699EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:37 p.m.5 views

CVE-2021-35414

Chamilo LMS v1.11.x was discovered to contain a SQL injection via the doc parameter in main/plagiarism/compilatio/upload.php...

9.8CVSS7.2AI score0.01805EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/16 12:0 a.m.5 views

Chamilo LMS 安全漏洞

Chamilo LMS is an open source online learning and collaboration system from Chamilo Open Source. The system supports the creation of instructional content, remote training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version 1.11.28, which stems from th...

5.4CVSS5.9AI score0.003EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.4 views

PT-2025-37378

Name of the Vulnerable Software and Affected Versions Chamilo versions prior to 1.11.30 Description Chamilo is a learning management system. A blind Server-Side Request Forgery SSRF condition exists due to insufficient validation of incoming requests used in the operating system command. Successf...

9.1CVSS6.2AI score0.00364EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.7 views

PT-2025-37309

Name of the Vulnerable Software and Affected Versions Chamilo versions prior to 1.11.30 Description Chamilo is a learning management system with an OS Command Injection issue in the /main/cron/lang/check parse lang.php file. Exploitation may allow a remote attacker to execute arbitrary SQL querie...

8.7CVSS6.2AI score0.02603EPSS
Exploits1References11
GithubExploit
GithubExploit
added 2025/01/24 5:21 p.m.207 views

Exploit for Unrestricted Upload of File with Dangerous Type in Chamilo Chamilo_Lms

CVE-2023-4220 Exploit for CVE-2023-4220 Esto es un exploit...

8.1CVSS7.2AI score0.76084EPSS
Exploits27
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.8 views

The vulnerability of the Chamilo LMS electronic learning and content management system lies in the lack of measures to neutralize instructions within the dynamically executed code, allowing a violator to execute arbitrary code.

The vulnerability of the Chamilo LMS electronic learning and content management system lies in the lack of measures taken to neutralize instructions within the dynamically executed code. Exploitation of this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS5.9AI score0.00323EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.4 views

Chamilo LMS 安全漏洞

Chamilo LMS is an open source online learning and collaboration system from Chamilo Open Source. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version v.1.11.26, which stems fro...

5.4CVSS6.8AI score0.00335EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/11/04 12:0 a.m.4 views

Chamilo LMS 安全漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version 1.11.26, which stems...

6.1CVSS6.4AI score0.00381EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.4 views

PT-2024-21931 · Unknown · Chamilo Lms

Name of the Vulnerable Software and Affected Versions: Chamilo LMS version 1.11.26 Description: A Cross Site Scripting issue allows a remote attacker to escalate privileges via a crafted script to the filename parameter of the "new ticket.php" component. This could potentially lead to data theft ...

7.1CVSS6.7AI score0.00699EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.4 views

PT-2024-21932 · Unknown · Chamilo Lms

Name of the Vulnerable Software and Affected Versions: Chamilo LMS version 1.11.26 Description: A Cross Site Scripting issue allows a remote attacker to escalate privileges via a crafted script to the filename parameter of the home.php component. Recommendations: For Chamilo LMS version 1.11.26,...

7.1CVSS6.4AI score0.00699EPSS
Exploits2References7
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.4 views

Chamilo LMS 安全漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version 1.11.26, which stems...

7.1CVSS6AI score0.00699EPSS
Exploits2References2
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.3 views

Chamilo LMS Security Vulnerability

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS v1.11.24 and earlier versions,...

8.1CVSS6.9AI score0.76084EPSS
Exploits27References5
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.6 views

Chamilo LMS Security Vulnerability

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version v1.11.24 and prior...

8.8CVSS7AI score0.02433EPSS
Exploits6References5
Positive Technologies
Positive Technologies
added 2023/11/28 12:0 a.m.4 views

PT-2023-28301 · Unknown · Chamilo Lms

Name of the Vulnerable Software and Affected Versions: Chamilo LMS versions prior to 1.11.24 Description: The issue allows authenticated attackers with a learner role to achieve remote code execution. This is possible due to an unrestricted file upload in the /main/inc/ajax/work.ajax.php endpoint...

8.8CVSS9.1AI score0.02433EPSS
Exploits6References9
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.5 views

Chamilo LMS Security Vulnerability

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version v1.11.24 and prior...

8.8CVSS7AI score0.02433EPSS
Exploits6References6
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.5 views

Chamilo LMS Security Vulnerability

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS v1.11.20 and earlier versions,...

9.8CVSS7.3AI score0.68897EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/11/28 12:0 a.m.4 views

PT-2023-28292 · Unknown · Chamilo Lms

Name of the Vulnerable Software and Affected Versions: Chamilo LMS versions prior to 1.11.24 Description: The issue allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell, specifically through the big file upload...

8.1CVSS9.1AI score0.76084EPSS
Exploits27References13
Rows per page
Query Builder