CVE-2025-26529

🗓️ 24 Feb 2025 19:52:48Reported by fedoraType

cve🔗 web.nvd.nist.gov📰️ 8 Media mentions👁 110 Views

Required sanitizing in site admin log to prevent stored XSS risk in CVE-2025-26529.

Reporter	Title	Published	Views	Family All 24
GithubExploit	Exploit for Cross-site Scripting in Moodle	12 Apr 202523:17	–	githubexploit
Circl	CVE-2025-26529	24 Feb 202520:22	–	circl
CNNVD	Moodle 安全漏洞	24 Feb 202500:00	–	cnnvd
CNVD	Moodle Cross-Site Scripting Vulnerability (CNVD-2025-11089)	28 Feb 202500:00	–	cnvd
Cvelist	CVE-2025-26529 Stored XSS risk in admin live log	24 Feb 202519:52	–	cvelist
EUVD	EUVD-2025-4274	3 Oct 202520:07	–	euvd
Github Security Blog	Moodle has a stored XSS risk in admin live log	24 Feb 202521:31	–	github
NVD	CVE-2025-26529	24 Feb 202520:15	–	nvd
OpenVAS	Moodle Multiple Vulnerabilities (Feb 2025)	20 Feb 202500:00	–	openvas
OSV	BIT-MOODLE-2025-26529 Stored XSS risk in admin live log	10 Aug 202523:48	–	osv

NVD

Node

moodle moodleRange4.1.0–4.1.16

moodle moodleRange4.3.0–4.3.10

moodle moodleRange4.4.0–4.4.6

moodle moodleRange4.5.0–4.5.2

[
  {
    "defaultStatus": "unaffected",
    "product": "moodle",
    "vendor": "Moodle Project",
    "versions": [
      {
        "lessThan": "4.5.2",
        "status": "affected",
        "version": "4.5.0",
        "versionType": "semver"
      },
      {
        "lessThan": "4.4.6",
        "status": "affected",
        "version": "4.4.0",
        "versionType": "semver"
      },
      {
        "lessThan": "4.3.10",
        "status": "affected",
        "version": "4.3.0",
        "versionType": "semver"
      },
      {
        "lessThan": "4.1.16",
        "status": "affected",
        "version": "4.1.0",
        "versionType": "semver"
      },
      {
        "lessThan": "4.2.*",
        "status": "unknown",
        "version": "4.2.0",
        "versionType": "semver"
      },
      {
        "lessThan": "4.0.*",
        "status": "unknown",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
git	www.git.moodle.org/gw
moodle	www.moodle.org/mod/forum/discuss.php

08 Aug 2025 19:37Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.16.1 - 8.3

EPSS0.00961

SSVC

CWE-79