Posted on

CVE-2012-4030 (chamilo_lms)

Chamilo before 1.8.8.6 does not adequately handle user supplied input by the index.php script, which could allow remote attackers to delete arbitrary files.