Every CVE whose affected-product data names Chamilo Chamilo Lms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (122)
CVE-2025-50187 — CVSS 9.8 (critical): Chamilo is a learning management system. Prior to version 1.11.28, parameter from SOAP request is evaluated without filtering which leads…
CVE-2019-13082 — CVSS 9.8 (critical): Chamilo LMS 1.11.8 and 2.x allows remote code execution through an lp_upload.php unauthenticated file upload feature. It extracts a ZIP…
CVE-2025-50192 — CVSS 9.8 (critical): Chamilo is a learning management system. Prior to version 1.11.30, there is a time-based SQL Injection in found in /main/webservices/registr…
CVE-2021-35414 — CVSS 9.8 (critical): Chamilo LMS v1.11.x was discovered to contain a SQL injection via the doc parameter in main/plagiarism/compilatio/upload.php.
CVE-2026-28430 — CVSS 9.8 (critical): Chamilo LMS is a learning management system. Prior to version 1.11.34, there is an unauthenticated SQL injection vulnerability which allows…
CVE-2023-34944 — CVSS 9.8 (critical): An arbitrary file upload vulnerability in the /fileUpload.lib.php component of Chamilo 1.11.* up to v1.11.18 allows attackers to execute…
CVE-2026-33698 — CVSS 9.8 (critical): Chamilo LMS is a learning management system. Prior to 1.11.38, a chained attack can enable otherwise-blocked PHP code from the…
CVE-2025-52998 — CVSS 9.8 (critical): Chamilo is a learning management system. Prior to version 1.11.30, in the application, deserialization of data is performed, the data can…
CVE-2022-27423 — CVSS 9.8 (critical): Chamilo LMS v1.11.13 was discovered to contain a SQL injection vulnerability via the blog_id parameter at /blog/blog.php.
CVE-2018-1999019 — CVSS 9.8 (critical): Chamilo LMS version 11.x contains an Unserialization vulnerability in the "hash" GET parameter for the api endpoint located at…
CVE-2025-50190 — CVSS 9.8 (critical): Chamilo is a learning management system. Prior to version 1.11.30, there is an error-based SQL Injection via the GET openid.assoc_handle…
CVE-2026-33707 — CVSS 9.4 (critical): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, the default password reset mechanism generates tokens using…
CVE-2026-32892 — CVSS 9.1 (critical): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains an OS Command Injection vulnerability in…
CVE-2025-50199 — CVSS 9.1 (critical): Chamilo is a learning management system. Prior to version 1.11.30, there is a blind SSRF vulnerability in /index.php via the POST…
CVE-2025-59542 — CVSS 9.0 (critical): Chamilo is a learning management system. Prior to version 1.11.34, there is a stored cross-site scripting (XSS) vulnerability. By injecting…
CVE-2025-59543 — CVSS 9.0 (critical): Chamilo is a learning management system. Prior to version 1.11.34, there is a stored cross-site scripting (XSS) vulnerability. By injecting…
CVE-2025-55208 — CVSS 9.0 (critical): Chamilo is a learning management system. Versions prior to 1.11.34 have a Stored XSS through insecure file uploads in `Social Networks`…
CVE-2024-30616 — CVSS 8.8 (high): Chamilo LMS 1.11.26 is vulnerable to Incorrect Access Control via main/auth/profile. Non-admin users can manipulate sensitive profiles…
CVE-2023-4225 — CVSS 8.8 (high): Unrestricted file upload in `/main/inc/ajax/exercise.ajax.php` in Chamilo LMS <= v1.11.24 allows authenticated attackers with learner role…
CVE-2023-4224 — CVSS 8.8 (high): Unrestricted file upload in `/main/inc/ajax/dropbox.ajax.php` in Chamilo LMS <= v1.11.24 allows authenticated attackers with learner role…
CVE-2023-4223 — CVSS 8.8 (high): Unrestricted file upload in `/main/inc/ajax/document.ajax.php` in Chamilo LMS <= v1.11.24 allows authenticated attackers with learner role…
CVE-2025-50189 — CVSS 8.8 (high): Chamilo is a learning management system. Prior to version 1.11.30, the application performs insufficient validation of data coming from the…
CVE-2020-23127 — CVSS 8.8 (high): Chamilo LMS 1.11.10 is affected by Cross Site Request Forgery (CSRF) via the edit_user function by targeting an admin user.
CVE-2021-35413 — CVSS 8.8 (high): A remote code execution (RCE) vulnerability in course_intro_pdf_import.php of Chamilo LMS v1.11.x allows authenticated attackers to execute…
CVE-2026-33618 — CVSS 8.8 (high): Chamilo LMS is a learning management system. Prior to .0.0-RC.3, the PlatformConfigurationController::decodeSettingArray() method uses…
CVE-2025-52468 — CVSS 8.8 (high): Chamilo is a learning management system. Prior to version 1.11.30, an input validation vulnerability exists when importing user data from…
CVE-2023-4226 — CVSS 8.8 (high): Unrestricted file upload in `/main/inc/ajax/work.ajax.php` in Chamilo LMS <= v1.11.24 allows authenticated attackers with learner role to…
CVE-2022-27426 — CVSS 8.8 (high): A Server-Side Request Forgery (SSRF) in Chamilo LMS v1.11.13 allows attackers to enumerate the internal network and execute arbitrary…
CVE-2026-40291 — CVSS 8.8 (high): Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, an insecure direct object modification…
CVE-2026-30881 — CVSS 8.8 (high): Chamilo LMS is a learning management system. Version 1.11.34 and prior contains a SQL Injection vulnerability in the statistics AJAX…
CVE-2026-30875 — CVSS 8.8 (high): Chamilo LMS is a learning management system. Prior to version 1.11.36, an arbitrary file upload vulnerability in the H5P Import feature…
CVE-2026-29041 — CVSS 8.8 (high): Chamilo is a learning management system. Prior to version 1.11.34, Chamilo LMS is affected by an authenticated remote code execution…
CVE-2026-35196 — CVSS 8.8 (high): Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, an OS Command Injection vulnerability exists in…
CVE-2025-55289 — CVSS 8.8 (high): Chamilo is a learning management system. Prior to version 1.11.34, there is a stored XSS vulnerability in Chamilo LMS (Verison 1.11.32)…
CVE-2026-34160 — CVSS 8.6 (high): Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the PENS (Package Exchange Notification…
CVE-2026-31939 — CVSS 8.3 (high): Chamilo LMS is a learning management system. Prior to 1.11.38, there is a path traversal in main/exercise/savescores.php leading to…
CVE-2025-52482 — CVSS 8.3 (high): Chamilo is a learning management system. Prior to version 1.11.30, a Stored XSS vulnerability exists in the glossary function, enabling all…
CVE-2023-4220 — CVSS 8.1 (high): Unrestricted file upload in big file upload functionality in `/main/inc/lib/javascript/bigupload/inc/bigUpload.php` in Chamilo LMS <=…
CVE-2018-20329 — CVSS 8.1 (high): Chamilo LMS version 1.11.8 contains a main/inc/lib/CoursesAndSessionsCatalog.class.php SQL injection, allowing users with access to the…
CVE-2025-59541 — CVSS 8.1 (high): Chamilo is a learning management system. Prior to version 1.11.34, a Cross-Site Request Forgery (CSRF) vulnerability allows an attacker to…
CVE-2023-34962 — CVSS 8.1 (high): Incorrect access control in Chamilo v1.11.x up to v1.11.18 allows a student to arbitrarily access and modify another student's personal…
CVE-2026-31941 — CVSS 7.7 (high): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains a Server-Side Request Forgery (SSRF)…
CVE-2026-33710 — CVSS 7.5 (high): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, REST API keys are generated using md5(time() + (user_id * 5)…
CVE-2024-30619 — CVSS 7.5 (high): Chamilo LMS Version 1.11.26 is vulnerable to Incorrect Access Control. A non-authenticated attacker can request the number of messages and…
CVE-2026-31940 — CVSS 7.5 (high): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, in main/lp/aicc_hacp.php, user-controlled request parameters…
CVE-2026-32931 — CVSS 7.5 (high): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, an unrestricted file upload vulnerability in the exercise…
CVE-2012-4030 — CVSS 7.5 (high): Chamilo before 1.8.8.6 does not adequately handle user supplied input by the index.php script, which could allow remote attackers to delete…
CVE-2025-50196 — CVSS 7.2 (high): Chamilo is a learning management system. Prior to version 1.11.30, there is an OS Command Injection vulnerability in /plugin/vchamilo/views/…
CVE-2025-50195 — CVSS 7.2 (high): Chamilo is a learning management system. Prior to version 1.11.30, there is an OS Command Injection vulnerability in /plugin/vchamilo/views/…
CVE-2025-50188 — CVSS 7.2 (high): Chamilo is a learning management system. Prior to version 1.11.30, the application performs insufficient validation of data coming from the…
CVE-2026-33714 — CVSS 7.2 (high): Chamilo is an open-source learning management system (LMS). Version 2.0.0-RC.2 contains a SQL Injection vulnerability in the statistics…
CVE-2026-33715 — CVSS 7.2 (high): Chamilo LMS is an open-source learning management system. In version 2.0-RC.2, the file public/main/inc/ajax/install.ajax.php is accessible…
CVE-2025-50191 — CVSS 7.2 (high): Chamilo is a learning management system. Prior to version 1.11.30, there is an error-based SQL Injection via POST userFile with the…
CVE-2023-4222 — CVSS 7.2 (high): Command injection in `main/lp/openoffice_text_document.class.php` in Chamilo LMS <= v1.11.24 allows users permitted to upload Learning…
CVE-2025-50194 — CVSS 7.2 (high): Chamilo is a learning management system. Prior to version 1.11.30, there is an OS Command Injection vulnerability in /main/cron/lang/check_p…
CVE-2023-4221 — CVSS 7.2 (high): Command injection in `main/lp/openoffice_presentation.class.php` in Chamilo LMS <= v1.11.24 allows users permitted to upload Learning Paths…
CVE-2025-50193 — CVSS 7.2 (high): Chamilo is a learning management system. Prior to version 1.11.30, there is an OS command Injection vulnerability in /plugin/vchamilo/views/…
CVE-2022-27421 — CVSS 7.2 (high): Chamilo LMS v1.11.13 lacks validation on the user modification form, allowing attackers to escalate privileges to Platform Admin.
CVE-2024-47886 — CVSS 7.2 (high): Chamilo is a learning management system. Chamillo is affected by a post-authentication phar unserialize which leads to a remote code…
CVE-2025-50197 — CVSS 7.2 (high): Chamilo is a learning management system. Prior to version 1.11.30, there is an OS Command Injection vulnerability in /main/admin/sub_languag…
CVE-2026-33704 — CVSS 7.1 (high): Chamilo LMS is a learning management system. Prior to 1.11.38, any authenticated user (including students) can write arbitrary content to…
CVE-2024-27524 — CVSS 7.1 (high): Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows a remote attacker to escalate privileges via a crafted script to the…
CVE-2025-52469 — CVSS 7.1 (high): Chamilo is a learning management system. Prior to version 1.11.30, a logic vulnerability in the friend request workflow of Chamilo’s…
CVE-2026-32894 — CVSS 7.1 (high): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, an Insecure Direct Object Reference (IDOR) vulnerability in…
CVE-2026-32930 — CVSS 7.1 (high): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, an Insecure Direct Object Reference (IDOR) vulnerability in…
CVE-2026-33702 — CVSS 7.1 (high): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains an Insecure Direct Object Reference…
CVE-2026-33706 — CVSS 7.1 (high): Chamilo LMS is a learning management system. Prior to 1.11.38, any authenticated user with a REST API key can modify their own status field…
CVE-2026-34602 — CVSS 7.1 (high): Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the /api/course_rel_users endpoint is vulnerable…
CVE-2019-1000017 — CVSS 6.5 (medium): Chamilo Chamilo-lms version 1.11.8 and earlier contains an Incorrect Access Control vulnerability in Tickets component that can result in…
CVE-2026-34370 — CVSS 6.5 (medium): Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, the notebook module contains an Insecure Direct…
CVE-2026-33141 — CVSS 6.5 (medium): Chamilo LMS is a learning management system. Prior to 2.0.0-RC.3, an Insecure Direct Object Reference (IDOR) vulnerability in the REST API…
CVE-2026-33708 — CVSS 6.5 (medium): Chamilo LMS is a learning management system. Prior to 1.11.38, the get_user_info_from_username REST API endpoint returns personal…
CVE-2026-33703 — CVSS 6.5 (medium): Chamilo LMS is a learning management system. Prior to 2.0.0-RC.3, an Insecure Direct Object Reference (IDOR) vulnerability in the…
CVE-2026-33736 — CVSS 6.5 (medium): Chamilo LMS is a learning management system. Prior to 2.0.0-RC.3, any authenticated user (including ROLE_STUDENT) can enumerate all…
CVE-2023-34961 — CVSS 6.1 (medium): Chamilo v1.11.x up to v1.11.18 was discovered to contain a cross-site scripting (XSS) vulnerability via the /feedback/comment field.
CVE-2024-30618 — CVSS 6.1 (medium): A Stored Cross-Site Scripting (XSS) Vulnerability in Chamilo LMS 1.11.26 allows a remote attacker to execute arbitrary JavaScript in a web…
CVE-2025-52475 — CVSS 6.1 (medium): Chamilo is a learning management system. Prior to version 1.11.30, there is a reflected cross-site scripting (XSS) vulnerability in the…
CVE-2025-52476 — CVSS 6.1 (medium): Chamilo is a learning management system. Prior to version 1.11.30, there is a reflected cross-site scripting (XSS) vulnerability due to…
CVE-2020-23126 — CVSS 6.1 (medium): Chamilo LMS version 1.11.10 contains an XSS vulnerability in the personal profile edition form, affecting the user him/herself and social…
CVE-2015-9540 — CVSS 6.1 (medium): Chamilo LMS through 1.9.10.2 allows a link_goto.php?link_url= open redirect, a related issue to CVE-2015-5503.
CVE-2021-37390 — CVSS 6.1 (medium): A Chamilo LMS 1.11.14 reflected XSS vulnerability exists in main/social/search.php=q URI (social network search feature).
CVE-2025-52564 — CVSS 6.1 (medium): Chamilo is a learning management system. Prior to version 1.11.30, the open parameter of help.php fails to properly sanitize user input…
CVE-2026-30882 — CVSS 6.1 (medium): Chamilo LMS is a learning management system. Chamilo LMS version 1.11.34 and prior contains a Reflected Cross-Site Scripting (XSS)…
CVE-2023-31801 — CVSS 6.1 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via the skills wheel…
CVE-2019-1000015 — CVSS 6.1 (medium): Chamilo Chamilo-lms version 1.11.8 and earlier contains a Cross Site Scripting (XSS) vulnerability in main/messages/new_message.php…
CVE-2022-27422 — CVSS 6.1 (medium): A reflected cross-site scripting (XSS) vulnerability in Chamilo LMS v1.11.13 allows attackers to execute arbitrary web scripts or HTML via…
CVE-2025-52563 — CVSS 6.1 (medium): Chamilo is a learning management system. Prior to version 1.11.30, there is a reflected cross-site scripting (XSS) vulnerability due to…
CVE-2013-6787 — CVSS 6.0 (medium): SQL injection vulnerability in the check_user_password function in main/auth/profile.php in Chamilo LMS 1.9.6 and earlier, when using the…
CVE-2025-69581 — CVSS 5.5 (medium): An issue was discovered in Chamillo LMS 1.11.2. The Social Network /personal_data endpoint exposes full sensitive user information even…
CVE-2024-30617 — CVSS 5.4 (medium): A Cross-Site Request Forgery (CSRF) vulnerability in Chamilo LMS 1.11.26 "/main/social/home.php," allows attackers to initiate a request…
CVE-2025-59540 — CVSS 5.4 (medium): Chamilo is a learning management system. Prior to version 1.11.34, a stored XSS vulnerability exists in Chamilo LMS that allows a staff…
CVE-2023-31807 — CVSS 5.4 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via a crafted payload…
CVE-2023-31806 — CVSS 5.4 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via a crafted payload…
CVE-2026-1106 — CVSS 5.4 (medium): A security flaw has been discovered in Chamilo LMS up to 2.0.0 Beta 1. This issue affects the function deleteLegal of the file…
CVE-2023-31804 — CVSS 5.4 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via the course category…
CVE-2023-31802 — CVSS 5.4 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via the skype and…
CVE-2023-31800 — CVSS 5.4 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via the forum title…
CVE-2026-32893 — CVSS 5.4 (medium): Chamilo LMS is a learning management system. Prior to 2.0.0-RC.3, a Reflected Cross-Site Scripting (XSS) vulnerability in the exercise…
CVE-2026-34161 — CVSS 5.4 (medium): Chamilo LMS is an open-source learning management system. In versions prior to 2.0.0-RC.3, a Stored Cross-Site Scripting (XSS)…
CVE-2021-37391 — CVSS 5.4 (medium): A user without privileges in Chamilo LMS 1.11.14 can send an invitation message to another user, e.g., the administrator, through…
CVE-2018-20328 — CVSS 5.4 (medium): Chamilo LMS version 1.11.8 contains XSS in main/social/group_view.php in the social groups tool, allowing authenticated users to affect…
CVE-2024-51142 — CVSS 5.4 (medium): Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows an attacker to execute arbitrary code via the svkey parameter of the…
CVE-2018-20327 — CVSS 5.4 (medium): Chamilo LMS version 1.11.8 contains XSS in main/template/default/admin/gradebook_list.tpl in the gradebook dependencies tool, allowing…
CVE-2026-33737 — CVSS 5.3 (medium): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, multiple files use simplexml_load_string() without XXE…
CVE-2023-34959 — CVSS 5.3 (medium): An issue in Chamilo v1.11.* up to v1.11.18 allows attackers to execute a Server-Side Request Forgery (SSRF) and obtain information on the…
CVE-2024-50337 — CVSS 5.3 (medium): Chamilo is a learning management system. Prior to version 1.11.28, the OpenId function allows anyone to send requests to any URL on…
CVE-2026-30876 — CVSS 5.3 (medium): Chamilo LMS is a learning management system. Prior to version 1.11.36, Chamilo is vulnerable to user enumeration with valid/invalid…
CVE-2026-33705 — CVSS 5.3 (medium): Chamilo LMS is a learning management system. Prior to 1.11.38, Twig template files (.tpl) under /main/template/default/ are directly…
CVE-2023-39582 — CVSS 4.9 (medium): SQL Injection vulnerability in Chamilo LMS v.1.11 thru v.1.11.20 allows a remote privileged attacker to obtain sensitive information via…
CVE-2020-23128 — CVSS 4.9 (medium): Chamilo LMS 1.11.10 does not properly manage privileges which could allow a user with Sessions administrator privilege to create a new user…
CVE-2025-50198 — CVSS 4.9 (medium): Chamilo is a learning management system. Prior to version 1.11.30, Chamilo is vulnerable to deserialization of untrusted data in…
CVE-2023-31805 — CVSS 4.8 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local authenticated attacker to execute arbitrary code via the…
CVE-2021-35415 — CVSS 4.8 (medium): A stored cross-site scripting (XSS) vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the…
CVE-2023-31803 — CVSS 4.8 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via the resource…
CVE-2025-50186 — CVSS 4.8 (medium): Chamilo is a learning management system. Prior to version 1.11.30, a stored cross-site scripting (XSS) vulnerability exists due to…
CVE-2025-52470 — CVSS 4.8 (medium): Chamilo is a learning management system. Prior to version 1.11.30, a stored cross-site scripting (XSS) vulnerability exists in the…
CVE-2023-31799 — CVSS 4.8 (medium): Cross Site Scripting vulnerability found in Chamilo Lms v.1.11.18 allows a local attacker to execute arbitrary code via the system…
CVE-2026-32932 — CVSS 4.7 (medium): Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, an Open Redirect vulnerability in the session course edit…
CVE-2024-27525 — CVSS 4.6 (medium): Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows a remote attacker to escalate privileges via a crafted script to the…
CVE-2023-34958 — CVSS 4.3 (medium): Incorrect access control in Chamilo 1.11.* up to 1.11.18 allows a student subscribed to a given course to download documents belonging to…
CVE-2025-59544 — CVSS 4.3 (medium): Chamilo is a learning management system. Prior to version 1.11.34, the functionality for the user to update the category does not implement…
CVE-2025-66447 — CVSS 0.0 (none): Chamilo LMS is a learning management system. From 1.11.0 to 2.0-beta.1, anyone can trigger a malicious redirect through the use of the…