Cross Site Request Forgery (CSRF) vulnerability in Chamilo v.1.11 thru v.1.11.20 allows a remote authenticated privileged malicious user to execute arbitrary code.
chamilo chamilo