VYPR
High severity7.7NVD Advisory· Published Apr 10, 2026· Updated Apr 17, 2026

CVE-2026-31941

CVE-2026-31941

Description

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains a Server-Side Request Forgery (SSRF) vulnerability in the Social Wall feature. The endpoint read_url_with_open_graph accepts a URL from the user via the social_wall_new_msg_main POST parameter and performs two server-side HTTP requests to that URL without validating whether the target is an internal or external resource. This allows an authenticated attacker to force the server to make arbitrary HTTP requests to internal services, scan internal ports, and access cloud instance metadata. This vulnerability is fixed in 1.11.38 and 2.0.0-RC.3.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

12
  • Chamilo/Chamilo Lms11 versions
    cpe:2.3:a:chamilo:chamilo_lms:*:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:chamilo:chamilo_lms:*:*:*:*:*:*:*:*range: <1.11.38
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:alpha1:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:alpha2:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:alpha3:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:alpha4:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:alpha5:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:beta1:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:beta2:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:beta3:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:chamilo:chamilo_lms:2.0.0:rc2:*:*:*:*:*:*
  • Frappe/Lmsllm-fuzzy
    Range: < 1.11.38, < 2.0.0-RC.3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.