Primary

Context

Chamilo LMS User Data Exposure Vulnerability

Vulnerability

Patched

A vulnerability in Chamilo LMS prior to version 2.0.0-RC.3 allows any authenticated user, including those with the ROLE_STUDENT, to enumerate all users on the platform and access personal information such as email addresses, phone numbers, and roles. This includes visibility into administrator accounts. The issue arises because the User API's GetCollection operation is accessible to all users with ROLE_USER, a category that includes all authenticated users. As a result, students can list all users and their details through the API.

Impact

This vulnerability exposes the personal information of all users, including emails, phone numbers, and roles, to any authenticated user. It also allows for the identification of admin accounts, which could be targeted for phishing attacks.

Remediation

Users can upgrade to Chamilo LMS version 2.0.0-RC.3 or later to address this vulnerability.

Added: Apr 10, 2026, 7:19 PM

Updated: Apr 10, 2026, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

6.1

remediation

7.7

relevance

5.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

6.1

remediation

7.7

relevance

5.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Chamilo LMS User Data Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Chamilo LMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating