CVE-2022-42029EPSS p48.4%
CVE-2022-42029CVE-2022-42029
chamilo / chamilo
Description
Chamilo 1.11.16 is affected by an authenticated local file inclusion vulnerability which allows authenticated users with access to 'big file uploads' to copy/move files from anywhere in the file system into the web directory.
Scoring
| CVSS | 8.8 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| EPSS | 0.70% probability of exploitation · percentile 48.4% · 2026-06-18T12:00:27Z |
| Last modified | 2026-06-17 |