CNNVD-202602-859 Information

CNNVD ID

CNNVD-202602-859

Related CVE

CVE-2026-1517

• CNNVD Published: 2026-02-05

Description (Chinese)

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle 5.0及之前版本存在安全漏洞，该漏洞源于对组件Company Admin Block中未知函数的操作，可能导致SQL注入。

Description (English)

Moodle is an open-source, free-of-charge e-learning platform known as the curriculum management system, the learning management system or the virtual learning environment. There is a security loophole in Moodle 5.0 and previous versions, which stems from the operation of an unknown function in Component Company Admin Block, which may result in SQL injection.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Moodle

Published

2026-02-05

Last Modified

2026-02-24

References

https://github.com/iomad/iomad/ https://github.com/iomad/iomad/issues/2559 https://github.com/iomad/iomad/issues/2559#issuecomment-3841174677 https://vuldb.com/?ctiid.344487 https://vuldb.com/?id.344487