Description
An issue in Chamilo v1.11.* up to v1.11.18 allows attackers to execute a Server-Side Request Forgery (SSRF) and obtain information on the services running on the server via crafted requests in the social and links tools.
Remediation
References
Related Vulnerabilities
MySQL Other Vulnerability (CVE-2005-1636)
WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1 - 1.2.2)
Next.js URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-37699)
MySQL CVE-2023-22113 Vulnerability (CVE-2023-22113)
Apache HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2022-22721)