CVE-2026-33702 | Chamilo LMS up to 1.11.37/2.0.0-RC.2 lp_ajax_save_item.php authorization

A vulnerability classified as problematic was found in Chamilo LMS up to 1.11.37/2.0.0-RC.2. Affected is an unknown function of the file lp_ajax_save_item.php. The manipulation results in authorization bypass. This vulnerability is identified as CVE-2026-33702. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.

Tekst info:

Gepubliceerd: 20:40 - 10 Apr 2026

vuldb.com

Full text URL: https://vuldb.com/vuln/356917
Textarea URL (deze pagina):
https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOzwWx8vSNTc0sDc0BnnsJuA==_2026-04-10
Bron: https://vuldb.com/?rss.recent
Vuldb: https://vuldb.com
Publicatie datum: 2026-04-10 20:40:04
Data ververst op:
2026-04-10 20:45:04.620230