CVE-2024-50337 PUBLISHED

Chamilo: Potential unauthenticated blind SSRF via openid function

Assigner: GitHub_M
Reserved: 22.10.2024 Published: 02.03.2026 Updated: 02.03.2026

Chamilo is a learning management system. Prior to version 1.11.28, the OpenId function allows anyone to send requests to any URL on server's behalf, which results in unauthenticated blind SSRF. This issue has been patched in version 1.11.28.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS Score: 5.3

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	Low
Privileges Required	None	Integrity Impact	None
User Interaction	None	Availability Impact	None

CVSS 3.1

Product Status

Vendor	chamilo
Product	chamilo-lms
Versions	Version < 1.11.28 is affected

References

https://github.com/chamilo/chamilo-lms/security/advisories/GHSA-rp2w-g734-jf8h
https://github.com/chamilo/chamilo-lms/commit/43a9bd1fb8b3f57e7935a6a6bc48975e2063b01b
https://github.com/chamilo/chamilo-lms/releases/tag/v1.11.28

Problem Types

CWE-918: Server-Side Request Forgery (SSRF) CWE