File And Directory Information Exposure in Chamilo LMS - CVE-2026-33705
Published: April 24, 2026
Vulnerability identifier: #VU127553
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2026-33705
CWE-ID: CWE-538
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Chamilo
Affected software:
Chamilo LMS
Chamilo LMS
Detailed vulnerability description
The vulnerability allows a remote attacker to disclose sensitive information.
The vulnerability exists due to insertion of sensitive information into externally-accessible files in Twig template source files under /main/template/default/ when handling HTTP GET requests for .tpl files. A remote attacker can request directly accessible template files to disclose sensitive information.
The exposed files reveal internal application logic, variable names, AJAX endpoint URLs, admin panel structure, and permission check logic.
How to mitigate CVE-2026-33705
Install security update from vendor's website.