CVE-2026-31940HIGH 8.8EPSS p14.9%

CVE-2026-31940CVE-2026-31940

Description

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, in main/lp/aicc_hacp.php, user-controlled request parameters are directly used to set the PHP session ID before loading global bootstrap. This leads to session fixation. This vulnerability is fixed in 1.11.38 and 2.0.0-RC.3.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS0.24% probability of exploitation · percentile 14.9% · 2026-06-19T12:03:05Z
Published2026-04-10
Last modified2026-04-17

Underlying weaknesses· 1

CWE-384

References

  1. https://github.com/chamilo/chamilo-lms/commit/ce0192c62e48c9d9474d915c541b3274844afbf9
  2. https://github.com/chamilo/chamilo-lms/commit/e337b7cc74a0276a0b4f91f9282204d20cac1869
  3. https://github.com/chamilo/chamilo-lms/security/advisories/GHSA-4gp7-cfjh-77gv

1

TypeTargetConfidenceTier
WeaknessSession Fixationcwe-3840%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-31939
CVE
CVE-2026-33698
CVE
CVE-2026-33618
CVE
CVE-2026-35196
CVE
CVE-2025-50189
CVE
CVE-2026-30881
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.