Authorization bypass through user-controlled key in Chamilo LMS - CVE-2026-45142
Published: July 7, 2026
Chamilo LMS
Detailed vulnerability description
The vulnerability allows a remote user to modify another user's SCORM objectives.
The vulnerability exists due to authorization bypass through a user-controlled key in lp_ajax_save_objectives.php when handling requests containing the uid parameter. A remote user can modify the uid parameter in a request to modify another user's SCORM objectives.
No ownership check is performed on the supplied user identifier.