Chamilo URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2025-66447 - Vulnerability Database

Chamilo URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2025-66447

Medium

Reference: CVE-2025-66447

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-66447

Title: Chamilo URL Redirection to Untrusted Site (Open Redirect) Vulnerability

Overview:

Chamilo LMS is a learning management system. From 1.11.0 to 2.0-beta.1 anyone can trigger a malicious redirect through the use of the redirect parameter to /login. This vulnerability is fixed in 2.0-beta.2.