Back to directory

WRITEUP #1001

Multiple vulnerabilities on Chamilo 1.11.18

RCEOS command injectionSSRFIDORXSSCSRFSecurity code review

by@aituglo(Aituglo)

Program

Chamilo

Published

Jul 1, 2023

Added to HackDex

Jul 17, 2023

Read Full Writeuphttps://www.randorisec.fr/chamilo-1.11.18-multiple-vulnerabilities

▸ RELATED WRITEUPS

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Vulnerabilities in Homepage Dashboard

Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!

RCEConfusion attack

Studying 0days: How we hacked Anki, the world's most popular flashcard app

RCEComponents with known vulnerabilities

We hacked Anki - 0 day exploit from studying someone elses flashcards

RCEComponents with known vulnerabilities

Built with ❤️ by Shubham Rawat