2 matches found
CVE-2023-34959
Chamilo LMS is affected: versions 1.11.* up to 1.11.18 expose a Server-Side Request Forgery (SSRF) through crafted requests in the social and links tools, enabling an attacker to obtain information about services running on the server. The public sources do not specify a concrete patch version or...
CVE-2023-34959
An issue in Chamilo v1.11. up to v1.11.18 allows attackers to execute a Server-Side Request Forgery SSRF and obtain information on the services running on the server via crafted requests in the social and links tools...