CNNVD-202602-464 Information

CNNVD ID

CNNVD-202602-464

Related CVE

CVE-2025-67850

• CNNVD Published: 2026-02-03

Description (Chinese)

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在安全漏洞，该漏洞源于公式编辑器的算术表达式字段对用户提供的数据检查不足，可能导致跨站脚本攻击、数据泄露或未经授权的操作。

Description (English)

Moodle is an open-source, free-of-charge e-learning platform known as the curriculum management system, the learning management system or the virtual learning environment. There is a security loophole in Modle, which stems from the inadequate check of data provided by users in the formulae editor ’ s arithmetical expression fields, which may lead to cross-site script attacks, data leaks or unauthorized operations.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Moodle

Published

2026-02-03

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-67850 https://bugzilla.redhat.com/show_bug.cgi?id=2423838