Security Advisory

CVE-2025-59544

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-06 03:32:20

Last updated 2026-03-09 15:29:09

Assigner GitHub_M

State PUBLISHED

Description

Chamilo is a learning management system. Prior to version 1.11.34, the functionality for the user to update the category does not implement authorization checks for the "category_id" parameter which allows users to update the category of any user by replacing the "category_id" parameter. This issue has been patched in version 1.11.34.

← Browse all CVEs View on cve.org ↗