CVE-2025-26530

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-26530

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-26530.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-26530

Aliases

Downstream

UBUNTU-CVE-2025-26530

Published

2025-02-24T20:15:33.807Z

Modified

2026-04-10T05:23:34.378608Z

Severity

6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

The question bank filter required additional sanitizing to prevent a reflected XSS risk.

References

Affected packages

Git / github.com/moodle/moodle

Affected ranges

Type

GIT

Repo

https://github.com/moodle/moodle

Events

Introduced

fe7aff8093240cc373f1ddaa66ecb91c4bc0a09f

Fixed

f4f9dd8eac286f1880738100afd71c585215f31f

Introduced

ee91c6536f99e1633e2245780c4fe7f47340ed66

Fixed

56a037e76606514584136e3c13e7ed4f53f34597

Introduced

52c0da7c647bd6ba8c5f61882d88959821a1fb41

Fixed

cd6600da14290f2ab097aba8ce9d107e21c21fff

Database specific

{
    "versions": [
        {
            "introduced": "4.3.0"
        },
        {
            "fixed": "4.3.10"
        },
        {
            "introduced": "4.4.0"
        },
        {
            "fixed": "4.4.6"
        },
        {
            "introduced": "4.5.0"
        },
        {
            "fixed": "4.5.2"
        }
    ]
}

Affected versions

v4.*

v4.3.0

v4.3.1

v4.3.2

v4.3.3

v4.3.4

v4.3.5

v4.3.6

v4.3.7

v4.3.8

v4.3.9

v4.4.0

v4.4.1

v4.4.2

v4.4.3

v4.4.4

v4.4.5

v4.5.0

v4.5.1

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-26530.json"