Exposure of Chamilo
LMS18
exposure score
178
sites use
0
exploited
3
critical
CVEs
12 resultsCVE-2023-4220HIGHChamilo LMS Unauthenticated Big Upload File Remote Code ExecutionEPSS 76.1%CVE-2023-3368CRITICALChamilo LMS Unauthenticated Command InjectionEPSS 68.9%CVE-2023-4222HIGHChamilo LMS Learning Path PPT2LP Command Injection VulnerabilityEPSS 3.5%CVE-2023-4221HIGHChamilo LMS Learning Path PPT2LP Command Injection VulnerabilityEPSS 3.5%CVE-2023-3533CRITICALChamilo LMS Unauthenticated Remote Code Execution via Arbitrary File WriteEPSS 2.7%CVE-2023-4226HIGHChamilo LMS File Upload Functionality Remote Code ExecutionEPSS 2.4%CVE-2023-3545CRITICALChamilo LMS Htaccess File Upload Security BypassEPSS 2.0%CVE-2023-4223HIGHChamilo LMS File Upload Functionality Remote Code ExecutionEPSS 1.8%CVE-2023-4225HIGHChamilo LMS File Upload Functionality Remote Code ExecutionEPSS 1.8%CVE-2023-4224HIGHChamilo LMS File Upload Functionality Remote Code ExecutionEPSS 1.8%CVE-2013-0739—Chamilo 1.9.4 has XSS due to improper validation of user-supplied input by the chat.php script.EPSS 0.8%CVE-2013-0738—Chamilo 1.9.4 has Multiple XSS and HTML Injection Vulnerabilities: blog.php and announcements.php.EPSS 0.8%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →