Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Chamilo

Chamilo is a fully-fledged e-learning system. Get your teachers and trainers up and teaching in no time. Some of our users report a 1/5 ratio in training time compared to the most famous open-source LMS to get them ready. Trainers can get to work in just one day The future of teaching is bright and so is Chamilo.

Official Site:

https://chamilo.org/

Severity Summary:

Critical: 10 High: 18 Medium: 42 Low: 1
Reference
Title
Severity
CVE-2019-13082
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
Critical
CVE-2021-34187
Chamilo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2023-3545
Chamilo Improper Handling of Case Sensitivity Vulnerability
Critical
CVE-2023-3368
Chamilo Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
Critical
CVE-2023-34960
Chamilo Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability
Critical
CVE-2023-34944
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
Critical
CVE-2022-27423
Chamilo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2021-35414
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Critical
CVE-2023-3533
Chamilo Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Critical
CVE-2018-1999019
Chamilo Improper Control of Generation of Code (Code Injection) Vulnerability
Critical
CVE-2022-40407
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2023-4221
Chamilo Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
High
CVE-2023-34962
Chamilo Other Vulnerability
High
CVE-2022-42029
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2022-27421
Chamilo Improper Privilege Management Vulnerability
High
CVE-2022-27426
Chamilo Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2022-27427
Chamilo Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2021-35413
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
High
CVE-2012-4030
Chamilo Improper Input Validation Vulnerability
High
CVE-2021-40662
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2023-4222
Chamilo Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
High
CVE-2020-23127
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2023-4224
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2023-4225
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2023-4226
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2018-20329
Chamilo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2023-4223
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2021-31933
Chamilo Improper Input Validation Vulnerability
High
CVE-2023-37062
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-34959
Chamilo Server-Side Request Forgery (SSRF) Vulnerability
Medium