Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Chamilo

Chamilo is a fully-fledged e-learning system. Get your teachers and trainers up and teaching in no time. Some of our users report a 1/5 ratio in training time compared to the most famous open-source LMS to get them ready. Trainers can get to work in just one day The future of teaching is bright and so is Chamilo.

Official Site:

https://chamilo.org/

Severity Summary:

Critical: 19 High: 34 Medium: 59 Low: 1
Reference
Title
Severity
CVE-2023-37065
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-1000017
Chamilo Missing Authorization Vulnerability
Medium
CVE-2023-37067
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-26746
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-39582
Chamilo Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2023-31799
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-31800
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-31801
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-31802
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-37389
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-31803
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-4220
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability
Medium
CVE-2023-31804
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-31805
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-23128
Chamilo Improper Privilege Management Vulnerability
Medium
CVE-2024-51142
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-31806
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-30618
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-30617
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2024-27525
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-69581
Chamilo Use of Cache Containing Sensitive Information Vulnerability
Medium
CVE-2023-37066
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-39061
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability
Low