PT-2018-15198 · Chamilo · Chamilo Lms

Published

2018-07-23

Updated

2019-09-17

CVE-2018-1999019

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Chamilo LMS versions prior to the version containing commit 0de84700648f098c1fbf6b807dee28ec640efe62

Description The issue concerns an Unserialization vulnerability in the hash GET parameter for the API endpoint located at "/webservices/api/v2.php". This can result in Unauthenticated remote code execution via a simple GET request to the API endpoint.

Recommendations For versions prior to the one containing commit 0de84700648f098c1fbf6b807dee28ec640efe62, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the "/webservices/api/v2.php" API endpoint to minimize the risk of exploitation. Avoid using the hash parameter in the affected API endpoint until the issue is resolved.

Fix

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2018-1999019

Affected Products

Chamilo Lms

PT-2018-15198 · Chamilo · Chamilo Lms

CVE-2018-1999019

Weakness Enumeration

Related Identifiers

Affected Products

References · 4