Security Advisory
CVE-2025-50199
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Chamilo is a learning management system. Prior to version 1.11.30, there is a blind SSRF vulnerability in /index.php via the POST openid_url parameter. This issue has been patched in version 1.11.30.