Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-33737 | Chamilo LMS has an XML External Entity (XXE) Injection |
chamilo |
chamilo-lms |
2026-04-10T19:05:08.873Z | 2026-04-13T16:02:10.691Z | |
| cve-2026-33736 | Chamilo LMS has an Insecure Direct Object Reference (I… |
chamilo |
chamilo-lms |
2026-04-10T19:03:18.638Z | 2026-04-13T20:55:46.727Z | |
| cve-2026-33710 | Chamilo LMS has Weak REST API Key Generation (Predictable) |
chamilo |
chamilo-lms |
2026-04-10T18:59:24.111Z | 2026-04-13T15:36:06.835Z | |
| cve-2026-33708 | Chamilo LMS has REST API PII Exposure via get_user_inf… |
chamilo |
chamilo-lms |
2026-04-10T18:54:35.034Z | 2026-04-15T15:04:02.449Z | |
| cve-2026-33707 | Weak Password Recovery Mechanism for Forgotten Passwor… |
chamilo |
chamilo-lms |
2026-04-10T18:52:54.097Z | 2026-04-13T16:03:17.502Z | |
| cve-2026-33706 | Chamilo LMS has a REST API Self-Privilege Escalation (… |
chamilo |
chamilo-lms |
2026-04-10T18:51:23.824Z | 2026-04-14T14:02:07.696Z | |
| cve-2026-33705 | Chamilo LMS has unauthenticated access to Twig templat… |
chamilo |
chamilo-lms |
2026-04-10T18:32:45.193Z | 2026-04-15T15:02:39.017Z | |
| cve-2026-33704 | Chamilo LMS Affected by Authenticated Arbitrary File W… |
chamilo |
chamilo-lms |
2026-04-10T18:30:48.478Z | 2026-04-13T16:04:11.514Z | |
| cve-2026-33703 | Chamilo LMS Critical IDOR: Any Authenticated User Can … |
chamilo |
chamilo-lms |
2026-04-10T18:23:01.031Z | 2026-04-14T14:05:24.505Z | |
| cve-2026-3446 | 6 (v4.0) | Base64 decoding stops at first padded quad by default |
Python Software Foundation |
CPython |
2026-04-10T18:17:35.045Z | 2026-04-13T16:07:24.229Z |
| cve-2026-33702 | Chamilo LMS has an Insecure Direct Object Reference (IDOR) |
chamilo |
chamilo-lms |
2026-04-10T18:15:49.964Z | 2026-04-13T15:36:13.742Z | |
| cve-2026-33698 | Chamilo LMS affected by unauthenticated RCE in main/in… |
chamilo |
chamilo-lms |
2026-04-10T18:14:17.424Z | 2026-04-15T15:00:31.550Z | |
| cve-2026-33618 | Chamilo LMS Affected by Remote Code Execution via eval… |
chamilo |
chamilo-lms |
2026-04-10T18:10:16.691Z | 2026-04-10T18:46:09.585Z | |
| cve-2026-33141 | Chamilo LMS has an IDOR in REST API Stats Endpoint Exp… |
chamilo |
chamilo-lms |
2026-04-10T18:01:26.027Z | 2026-04-14T14:06:11.889Z | |
| cve-2026-32892 | OS Command Injection in Chamilo LMS 1.11.36 |
chamilo |
chamilo-lms |
2026-04-10T17:56:57.695Z | 2026-04-14T14:07:14.704Z | |
| cve-2026-1502 | 5.7 (v4.0) | HTTP client proxy tunnel headers not validated for CR/LF |
Python Software Foundation |
CPython |
2026-04-10T17:54:44.121Z | 2026-04-21T20:18:44.794Z |
| cve-2026-32932 | Chamilo LMS has an Open Redirect via Unvalidated 'page… |
chamilo |
chamilo-lms |
2026-04-10T17:51:58.480Z | 2026-04-13T15:36:22.092Z | |
| cve-2026-32931 | Chamilo LMS has Arbitrary File Upload via MIME-Only Va… |
chamilo |
chamilo-lms |
2026-04-10T17:50:40.176Z | 2026-04-15T14:56:10.732Z | |
| cve-2026-32930 | Chamilo LMS has an IDOR in Gradebook Allows Cross-Cour… |
chamilo |
chamilo-lms |
2026-04-10T17:48:51.774Z | 2026-04-10T18:32:13.726Z | |
| cve-2026-32894 | Chamilo LMS has an IDOR in Gradebook Allows Cross-Cour… |
chamilo |
chamilo-lms |
2026-04-10T17:44:24.994Z | 2026-04-13T15:36:28.238Z | |
| cve-2026-32893 | Chamilo LMS has Reflected XSS via Unsanitized http_bui… |
chamilo |
chamilo-lms |
2026-04-10T17:42:24.220Z | 2026-04-15T14:51:41.852Z | |
| cve-2026-31941 | Server-Side Request Forgery (SSRF) in Chamilo LMS |
chamilo |
chamilo-lms |
2026-04-10T17:37:50.948Z | 2026-04-10T18:33:22.920Z | |
| cve-2026-31940 | Session Fixation in Chamilo LMS |
chamilo |
chamilo-lms |
2026-04-10T17:35:10.661Z | 2026-04-14T14:12:28.550Z | |
| cve-2026-5483 | 8.5 (v3.1) | Odh-dashboard: odh dashboard kubernetes service accoun… |
Red Hat |
Red Hat OpenShift AI 2.16 |
2026-04-10T17:33:25.055Z | 2026-04-29T05:20:59.210Z |
| cve-2026-31939 | Path Traversal (Arbitrary File Delete) in Chamilo LMS |
chamilo |
chamilo-lms |
2026-04-10T17:32:29.252Z | 2026-04-13T15:36:34.681Z | |
| cve-2025-66447 | Chamilo LMS has validation-less redirect on login page |
chamilo |
chamilo-lms |
2026-04-10T17:22:32.443Z | 2026-04-14T14:12:56.349Z | |
| cve-2026-40163 | Saltcorn has an Unauthenticated Path Traversal in sync… |
saltcorn |
saltcorn |
2026-04-10T17:07:49.067Z | 2026-04-15T14:50:01.616Z | |
| cve-2026-40162 | Bugsink affected by authenticated arbitrary file write… |
bugsink |
bugsink |
2026-04-10T17:02:58.985Z | 2026-04-10T18:30:44.339Z | |
| cve-2026-22560 | N/A | An open redirect vulnerability in Rocket.Chat ver… |
Rocket.Chat |
Rocket.Chat |
2026-04-10T17:00:11.746Z | 2026-04-14T19:04:32.571Z |
| cve-2026-40160 | PraisonAIAgents has SSRF via unvalidated URL in `web_c… |
MervinPraison |
PraisonAIAgents |
2026-04-10T16:59:09.542Z | 2026-04-13T15:36:41.165Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0526 | Multiples vulnérabilités dans les produits Siemens | 2023-07-11T00:00:00.000000 | 2023-07-11T00:00:00.000000 |
| certfr-2023-avi-0525 | Multiples vulnérabilités dans les produits Schneider Electric | 2023-07-11T00:00:00.000000 | 2023-07-11T00:00:00.000000 |
| certfr-2023-avi-0524 | Vulnérabilité dans les produits Apple | 2023-07-11T00:00:00.000000 | 2023-07-11T00:00:00.000000 |
| certfr-2023-avi-0523 | Multiples vulnérabilités dans Mozilla Firefox | 2023-07-11T00:00:00.000000 | 2023-07-11T00:00:00.000000 |
| certfr-2023-avi-0522 | Vulnérabilité dans SPIP | 2023-07-10T00:00:00.000000 | 2023-07-10T00:00:00.000000 |
| certfr-2023-avi-0521 | Vulnérabilité dans Asterisk | 2023-07-10T00:00:00.000000 | 2023-07-10T00:00:00.000000 |
| certfr-2023-avi-0520 | Multiples vulnérabilités dans Aruba ArubaOS | 2023-07-10T00:00:00.000000 | 2023-07-10T00:00:00.000000 |
| certfr-2023-avi-0519 | Multiples vulnérabilités dans Progress Software MOVEit Transfer | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0518 | Vulnérabilité dans les produits VMware | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0517 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0516 | Multiples vulnérabilités dans Google Android | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0515 | Multiples vulnérabilités dans le noyau Linux de Debian | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0514 | Multiples vulnérabilités dans les produits Tenable | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0513 | Multiples vulnérabilités dans les produits IBM | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0512 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-07-07T00:00:00.000000 | 2023-07-07T00:00:00.000000 |
| certfr-2023-avi-0511 | Vulnérabilité dans les produits GitLab Enterprise Edition | 2023-07-06T00:00:00.000000 | 2023-07-06T00:00:00.000000 |
| certfr-2023-avi-0510 | Vulnérabilité dans les produits Axis | 2023-07-05T00:00:00.000000 | 2023-07-05T00:00:00.000000 |
| certfr-2023-avi-0509 | Multiples vulnérabilités dans les produits Mozilla | 2023-07-05T00:00:00.000000 | 2023-07-05T00:00:00.000000 |
| certfr-2023-avi-0508 | Vulnérabilité dans les produits Moxa | 2023-07-03T00:00:00.000000 | 2023-07-03T00:00:00.000000 |
| certfr-2023-avi-0507 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0506 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0505 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0504 | Multiples vulnérabilités dans les produits IBM | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0503 | Multiples vulnérabilités dans Microsoft Edge | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0502 | Vulnérabilité dans Elasticsearch | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0501 | Multiples vulnérabilités dans GitLab | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0500 | Multiples vulnérabilités dans MongoDB | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0499 | Multiples vulnérabilités dans Tenable Nessus Network Monitor | 2023-06-30T00:00:00.000000 | 2023-06-30T00:00:00.000000 |
| certfr-2023-avi-0498 | Multiples vulnérabilités dans Synology Mail Station | 2023-06-29T00:00:00.000000 | 2023-06-29T00:00:00.000000 |
| certfr-2023-avi-0497 | Multiples vulnérabilités dans Grafana | 2023-06-29T00:00:00.000000 | 2023-06-29T00:00:00.000000 |