Loading
Chamilo is a learning management system. Prior to version 1.11.30, there is a reflected cross-site scripting (XSS) vulnerability due to improper sanitization of the keyword_active parameter in admin/user_list.php. This issue has been patched in version 1.11.30.
Use CWE-79, Chamilo vendor hub and Chamilo Lms product page to widen CVE-2025-52476 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2026-40291, CVE-2026-35196 and CVE-2026-34160 for nearby disclosures in the same product family.