Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Chamilo

Chamilo is a fully-fledged e-learning system. Get your teachers and trainers up and teaching in no time. Some of our users report a 1/5 ratio in training time compared to the most famous open-source LMS to get them ready. Trainers can get to work in just one day The future of teaching is bright and so is Chamilo.

Official Site:

https://chamilo.org/

Severity Summary:

Critical: 19 High: 34 Medium: 59 Low: 1
Reference
Title
Severity
CVE-2013-0739
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-32925
Chamilo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2023-34958
Chamilo Other Vulnerability
Medium
CVE-2021-38745
Chamilo Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2022-27425
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-52564
Chamilo Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Vulnerability
Medium
CVE-2020-23126
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-0738
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-20327
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-50186
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-50337
Chamilo Server-Side Request Forgery (SSRF) Vulnerability
Medium
CVE-2021-35415
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-59544
Chamilo Missing Authorization Vulnerability
Medium
CVE-2018-20328
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-43687
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-37390
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-59540
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-1000015
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-37391
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-52563
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2026-1106
Chamilo Incorrect Privilege Assignment Vulnerability
Medium
CVE-2013-6787
Chamilo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2023-31807
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-34959
Chamilo Server-Side Request Forgery (SSRF) Vulnerability
Medium
CVE-2023-34961
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-4029
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-37061
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-37063
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-37062
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-37064
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium