Description
An issue in Chamilo v1.11.* up to v1.11.18 allows attackers to execute a Server-Side Request Forgery (SSRF) and obtain information on the services running on the server via crafted requests in the social and links tools.
Remediation
References
Related Vulnerabilities
WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.23)
WordPress Plugin Cryptocurrency Widgets For Elementor Security Bypass (1.2.1)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33327)
Liferay Portal Insecure Default Initialization of Resource Vulnerability (CVE-2024-26267)
Liferay Portal Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-33320)