CVE-2025-67847
Unknown
Unknown - Not Provided
Server-Side Code Execution in Moodle Restore Interface
Publication date: 2026-01-23
Last updated on: 2026-03-05
Assigner: Fedora Project
Description
Description
A flaw was found in Moodle. An attacker with access to the restore interface could trigger server-side execution of arbitrary code. This is due to insufficient validation of restore input, which leads to unintended interpretation by core restore routines. Successful exploitation could result in a full compromise of the Moodle application.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| moodle | moodle | From 4.5.0 (inc) to 4.5.8 (exc) |
| moodle | moodle | From 5.0.0 (inc) to 5.0.4 (exc) |
| moodle | moodle | 5.1.0 |
| moodle | moodle | to 4.1.22 (exc) |
| moodle | moodle | From 4.4.0 (inc) to 4.4.12 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-94 | The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a flaw in Moodle where an attacker who has access to the restore interface can execute arbitrary code on the server. This happens because the restore input is not properly validated, causing the core restore routines to misinterpret the input and execute unintended commands.
How can this vulnerability impact me? :
Exploiting this vulnerability could lead to a full compromise of the Moodle application, allowing an attacker to execute arbitrary code on the server, potentially leading to data loss, unauthorized access, or disruption of services.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70