Primary

Context

Chamilo LMS Unauthenticated SQL Injection Vulnerability Allowing Administrative Account Takeover

Vulnerability

Patched

A critical unauthenticated SQL injection vulnerability has been identified in Chamilo LMS versions prior to 1.11.34. This vulnerability allows remote attackers to execute arbitrary SQL commands via the custom_dates parameter. Exploiting this flaw, in conjunction with a predictable legacy password reset mechanism, an attacker can take over an administrative account without any prior credentials. Additionally, this vulnerability exposes the entire database, including personal identifiable information (PII) and system configurations.

Impact

Exploitation of this vulnerability allows for unauthorized access to the entire database, including student PII, teacher credentials, financial data, and course information.

Remediation

Users can upgrade to Chamilo LMS version 1.11.34 or 2.0 to address this vulnerability.

Added: Mar 16, 2026, 9:10 PM

Updated: Mar 16, 2026, 9:10 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

5.0

exploitability

7.7

remediation

7.7

relevance

4.1

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

5.0

exploitability

7.7

remediation

7.7

relevance

4.1

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Chamilo LMS Unauthenticated SQL Injection Vulnerability Allowing Administrative Account Takeover

Vulnerability

Impact

Remediation

Affected Products

Chamilo LMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating