CVE-2026-33715 | Chamilo LMS up to 2.0-RC.2 AJAX Endpoint global.inc.php test_mailer missing authentication (GHSA-mxc9-9335-45mc)

A vulnerability was found in Chamilo LMS up to 2.0-RC.2. It has been declared as critical. This vulnerability affects the function test_mailer of the file global.inc.php of the component AJAX Endpoint. Executing a manipulation can lead to missing authentication.

This vulnerability is registered as CVE-2026-33715. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More