A zip slip vulnerability in the file upload function of Chamilo v1.11 allows malicious users to execute arbitrary code via a crafted Zip file.
chamilo chamilo 1.11