Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Chamilo Server-Side Request Forgery (SSRF) Vulnerability - CVE-2022-27426 - Vulnerability Database
Chamilo

Chamilo Server-Side Request Forgery (SSRF) Vulnerability - CVE-2022-27426

High
Reference: CVE-2022-27426
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-27426
Title: Chamilo Server-Side Request Forgery (SSRF) Vulnerability
Overview:

A Server-Side Request Forgery (SSRF) in Chamilo LMS v1.11.13 allows attackers to enumerate the internal network and execute arbitrary system commands via a crafted Phar file.