Chamilo · Chamilo Lms · CVE-2026-30876
**Name of the Vulnerable Software and Affected Versions**
Chamilo LMS versions prior to 1.11.36
**Description**
Chamilo LMS is a learning management system susceptible to user enumeration through the use of valid or invalid usernames. This allows an attacker to determine valid usernames within the system.
**Recommendations**
Update to version 1.11.36 or later.