A vulnerability marked as problematic has been reported in Chamilo LMS up to 1.11.35 . This impacts an unknown function. Performing a manipulation of the argument keyword results in cross site scripting. This vulnerability is reported as CVE-2026-30882 . The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.