Vulnerabilities > CVE-2022-27426 - Server-Side Request Forgery (SSRF) vulnerability in Chamilo LMS
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
A Server-Side Request Forgery (SSRF) in Chamilo LMS v1.11.13 allows attackers to enumerate the internal network and execute arbitrary system commands via a crafted Phar file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 29 |