📦 Moodle

This vulnerability in Moodle's MFA system allows attackers to bypass multi-factor authentication by manipulating the referrer URL. It affects Moodle installations with MFA enabled, potentially comprom...

CVE-2023-28333 is a Mustache template injection vulnerability in Moodle's pix helper that could allow remote code execution if user input is improperly passed to the helper. The vulnerability affects ...

CVE-2021-36392 is a critical SQL injection vulnerability in Moodle's user enrollment library that allows attackers to execute arbitrary SQL queries. This affects all Moodle instances with vulnerable v...

CVE-2021-36394 is a critical remote code execution vulnerability in Moodle's Shibboleth authentication plugin. Attackers can execute arbitrary code on Moodle servers by exploiting session fixation iss...

This critical Moodle vulnerability allows remote code execution through improper PostScript parsing in GhostScript. Attackers can exploit it to take complete control of vulnerable Moodle instances. Or...

CVE-2022-30599 is a critical SQL injection vulnerability in Moodle's badges functionality that allows attackers to execute arbitrary SQL commands. This affects all Moodle instances with badges enabled...

This SQL injection vulnerability in Moodle's H5P activity web service allows attackers to execute arbitrary SQL commands. It affects Moodle installations running versions 3.11 through 3.11.4. Attacker...

This vulnerability allows remote attackers to execute arbitrary code on Moodle servers by exploiting improper input validation during backup file restoration. It affects Moodle installations running v...

This vulnerability allows authenticated administrators in Moodle to execute arbitrary commands on the server through the legacy spellchecker plugin. Attackers with admin privileges can exploit special...

This vulnerability in Moodle's backup restore functionality allows authenticated privileged users to upload specially crafted backup files that bypass validation, potentially leading to server-side co...

This cross-site scripting vulnerability in Moodle allows attackers to inject malicious scripts through AI prompt responses. When users view compromised pages, attackers can steal session cookies or ma...

This vulnerability in Moodle allows remote attackers to bypass rate limiting on confirmation email services, enabling brute-force attacks against user accounts. Attackers can more easily guess or enum...

This Cross-Site Scripting (XSS) vulnerability in Moodle allows attackers to inject malicious JavaScript code into arithmetic expression fields in the formula editor. When other users view these compro...

This authentication bypass vulnerability in Moodle allows suspended users to authenticate through the LTI Provider, enabling unauthorized access to the system. This affects Moodle instances using LTI ...

This vulnerability allows attackers with access to Moodle's restore interface to execute arbitrary code on the server due to insufficient input validation. Successful exploitation could lead to comple...

Moodle 3.10.3 contains a persistent cross-site scripting vulnerability in calendar event subtitles that allows attackers to inject malicious JavaScript. When users view a crafted calendar event, the m...

CVE-2025-62399 allows attackers to perform brute-force attacks against Moodle's mobile and web service authentication endpoints due to insufficient rate limiting. This vulnerability could lead to unau...

This CSRF vulnerability in Moodle's Brickfield tool allows attackers to trick authenticated users into unknowingly submitting analysis requests. Any Moodle instance with the Brickfield tool enabled is...

A remote code execution vulnerability exists in Moodle's Dropbox repository feature, allowing authenticated teachers and managers to execute arbitrary code on the server. This affects Moodle installat...

CVE-2025-32044 is an information disclosure vulnerability in Moodle where unauthenticated attackers can retrieve sensitive user data including names, contact information, and hashed passwords via stac...

This SQL injection vulnerability in Moodle's course search module filter allows attackers to execute arbitrary SQL commands on the database. It affects Moodle installations with the vulnerable module ...

This stored cross-site scripting (XSS) vulnerability in Moodle's site administration live log allows attackers to inject malicious scripts that execute when administrators view the log. It affects Moo...

This reflected cross-site scripting (XSS) vulnerability in Moodle's question bank filter allows attackers to inject malicious scripts into web pages viewed by other users. When exploited, it could ena...

This vulnerability in Moodle allows users to delete OAuth2-linked accounts without proper authorization checks. It affects Moodle instances with OAuth2 authentication enabled, potentially allowing use...

This CSRF vulnerability in Moodle's Feedback module allows attackers to trick authenticated users into unknowingly sending bulk messages to non-respondents. Any Moodle instance with the Feedback modul...

This vulnerability allows authenticated users with bulk messaging permissions to send messages to users who should not be visible in activity non-respondent reports. It affects Moodle installations wh...

This vulnerability in Moodle allows authenticated users with question editing permissions to execute arbitrary code through calculated question types. It affects Moodle installations where users can a...

This CVE addresses a cache poisoning vulnerability in Moodle that could allow attackers to manipulate locally cached data. The vulnerability affects Moodle installations where improper validation of l...

The cURL wrapper in Moodle fails to strip HTTP authorization headers when following redirects, potentially exposing authentication credentials to third-party servers. This affects all Moodle instances...

This CSRF vulnerability in MFA logout allows attackers to forcibly log out authenticated users by tricking them into clicking malicious links. It affects systems using the vulnerable MFA implementatio...

This vulnerability allows attackers to bypass ReCAPTCHA protection on the login page of affected systems, potentially enabling brute-force attacks or unauthorized access attempts. It specifically affe...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in Moodle's admin preset tool where actions lack anti-CSRF tokens. Attackers can trick authenticated administrators into performing...

This vulnerability in Moodle's file picker unzip functionality allows attackers to cause denial of service by uploading specially crafted zip files that trigger excessive resource consumption. It affe...

This CVE describes a Server-Side Request Forgery (SSRF) vulnerability in Moodle's cURL blocked hosts list logic. The flaw allows attackers to bypass IP address restrictions by using 0.0.0.0, potential...

This vulnerability in Moodle allows attackers to bypass cURL security restrictions through insufficient redirect handling, enabling blind Server-Side Request Forgery (SSRF). Attackers can make Moodle ...

This Moodle vulnerability allows remote attackers to set the 'start page' preference for other users, bypassing intended access controls. Attackers can exploit this to access restricted functionality ...

This CVE describes an SQL injection vulnerability in Badges code related to configuring criteria. It allows authenticated users with teacher or manager roles to execute arbitrary SQL commands. The vul...

This vulnerability in Moodle's draft files area allows attackers to cause denial-of-service by bypassing user file upload limits. It affects Moodle installations from version 3.5 through 3.10.3, poten...

This SQL injection vulnerability in Moodle allows attackers to execute arbitrary SQL commands via XML-RPC calls when MNet (Moodle Network) is enabled and configured. It requires either site administra...

This Cross-Site Request Forgery (CSRF) vulnerability in Moodle allows attackers to trick authenticated users into unknowingly deleting badge alignments. Attackers can craft malicious requests that exe...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in Moodle's badge deletion functionality. Attackers can trick authenticated users into unknowingly deleting badges by crafting mali...

This vulnerability allows authenticated Moodle users to craft malicious TeX formulas that consume excessive server resources when rendered, potentially causing denial-of-service conditions. It affects...

This vulnerability in Moodle exposes user identifiers in URLs during anonymous assignment submissions, compromising intended anonymity. Attackers can view internal user IDs, leading to information dis...

A formula injection vulnerability in Moodle allows remote attackers to embed malicious formulas in exported data. When users export this data and open it in spreadsheet applications like Excel or Libr...

A reflected Cross-Site Scripting (XSS) vulnerability in Moodle's policy tool return URL allows attackers to inject malicious scripts through specially crafted links. This could lead to information dis...

An authorization logic flaw in Moodle's badge awarding system allows users to obtain badges without proper role verification. This affects all Moodle instances with badge functionality enabled, potent...

This vulnerability allows attackers to enumerate valid course IDs on a router by observing inconsistent responses to invalid IDs. This information disclosure could aid reconnaissance for further attac...

This authentication bypass vulnerability allows attackers with valid credentials to circumvent multi-factor authentication under specific conditions, potentially gaining unauthorized access to user ac...

A vulnerability in Moodle's timed assignment feature allows students to bypass time restrictions, potentially gaining extra time to complete assessments. This affects Moodle instances with timed assig...

This vulnerability allows unauthorized users to view limited course information they shouldn't have access to due to insufficient permission checks in the course overview function. It affects Moodle i...

Moodle fails to properly verify user enrolment status when sending quiz notifications, allowing suspended or inactive users to receive quiz-related messages. This leaks limited course information to u...

This vulnerability allows users with lower-level permissions to access cohort information from the system context, potentially exposing restricted administrative data. It affects systems using the vul...

An error-handling vulnerability in Moodle's router component (r.php) can expose internal directory listings when specific HTTP headers are misconfigured. This information disclosure affects Moodle ins...

A reflected cross-site scripting (XSS) vulnerability exists in Moodle's policy tool where insufficient sanitization of return URLs allows attackers to inject malicious scripts. This affects all Moodle...

This vulnerability in Moodle allows users to bypass authorization checks in a messaging web service, enabling them to view other users' names and online statuses without proper permissions. It affects...

This vulnerability in Moodle allows unauthorized users to access RSS feeds due to insufficient permission checks. Any Moodle instance with RSS feeds enabled is affected, potentially exposing internal ...

A Moodle vulnerability allows some users to access sensitive student information before identity verification via 2FA is completed. This affects Moodle instances with 2FA enabled where users can acces...

This vulnerability allows users to bypass Separate Groups mode restrictions in Moodle's Feedback activities, enabling unauthorized viewing or deletion of responses. It affects Moodle installations usi...

This vulnerability in Moodle allows authenticated users to view course badge lists for courses they shouldn't have access to. It's an improper access control issue affecting Moodle installations where...

This CVE describes an improper authorization vulnerability in Moodle where users can edit or delete RSS feeds they shouldn't have permission to modify. It affects Moodle installations with RSS feed fu...

This CVE describes an improper authorization vulnerability in Moodle where users can access report schedules without proper edit permissions. This affects Moodle instances where users have report view...

This vulnerability in Moodle allows attackers to inject malicious scripts into H5P error messages, which are then reflected back to users. It affects Moodle instances with H5P content enabled, potenti...

This vulnerability in Moodle's cURL wrapper could leak HTTP authorization credentials during redirects. When Moodle follows redirects, it strips HTTPAUTH and USERPWD headers but retains other authoriz...

This vulnerability in Moodle allows users with course-level glossary restoration permissions to improperly restore glossaries into the global site glossary. This affects Moodle administrators and user...

This vulnerability in Moodle allows unauthorized users to view hidden user profile fields through gradebook reports. Users without the 'view hidden user fields' capability can access sensitive informa...

This vulnerability allows an attacker to use a QR login key interchangeably with an auto-login key, potentially bypassing authentication mechanisms. It affects systems using the vulnerable authenticat...

This vulnerability allows attackers to inject malicious scripts into calendar event titles, which execute when users view the deletion prompt. This stored cross-site scripting (XSS) affects users of v...

This vulnerability allows a Moodle user with specific permissions to execute local file includes in misconfigured shared hosting environments. Attackers could read sensitive files from the server if t...

This vulnerability allows a Moodle user with wiki restore permissions and direct server access to execute local file includes in misconfigured shared hosting environments. It affects Moodle installati...

This CVE describes a cross-site scripting (XSS) vulnerability in Moodle's site log report where HTML content in event descriptions isn't properly encoded. This allows attackers to inject malicious scr...

This stored cross-site scripting (XSS) vulnerability in Moodle's equation editor allows attackers to inject malicious scripts when editing another user's equation. The scripts execute in victims' brow...

An open redirect vulnerability in Moodle's OAuth login flow allows attackers to redirect authenticated users to malicious websites. This affects all Moodle instances using OAuth authentication. Users ...