MEDIUMπŸ‡΅πŸ‡± Wersja polska

CVE-2025-26527

CVSS 5.3v3.1pub. 2025-02-24upd. 2025-08-08

Tags not expected to be visible to a user could still be discovered by them via the tag search page or in the tags block.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
  • Moodle

    APP
    Moodle
    4.1.0 – 4.1.16 (bez)4.3.0 – 4.3.10 (bez)4.4.0 – 4.4.6 (bez)4.5.0 – 4.5.2 (bez)
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-33999CRITICAL9.8PL βœ“ten sam produkt

Moodle MFA β€” niewystarczajΔ…ca sanityzacja URL referrer

CVE-2023-28333CRITICAL9.8ten sam produkt

The Mustache pix helper contained a potential Mustache injection risk if combined with user input (note: This ...

CVE-2021-36392CRITICAL9.8ten sam produkt

In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses.

CVE-2021-36393CRITICAL9.8ten sam produkt

In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses.

CVE-2021-36394CRITICAL9.8ten sam produkt

In Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin.

CVE-2025-26527 β€” Moodle β€” MEDIUM β€” CVSS 5.3 | CVEbaza.pl