CVE-2013-6787

Name of the Vulnerable Software and Affected Versions Chamilo LMS versions 1.9.6 and earlier

Description The issue allows remote authenticated users to execute arbitrary SQL commands. This is possible due to a SQL injection vulnerability in the check user password function, specifically when the system is configured to use non-encrypted passwords. The vulnerability can be exploited via the password0 parameter.

Recommendations For Chamilo LMS versions 1.9.6 and earlier, consider disabling the non-encrypted passwords mode to minimize the risk of exploitation. As a temporary workaround, restrict access to the check user password function in main/auth/profile.php until a fix is available. Avoid using the password0 parameter in the affected function until the issue is resolved.