Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2025-3627

A security vulnerability was discovered in Moodle that allows some users to access sensitive information about other students before they finish verifying their identities using two-factor authentication (2FA).

CVSS v3:

  • Severity: Unknown
  • Score:
  • AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
moodle / moodle 4.3.0-beta 4.3.12
moodle / moodle 4.4.0-beta 4.4.8
moodle / moodle 4.5.0-beta 4.5.4
moodle / moodle 4.3.0 4.3.12
moodle / moodle 4.4.0 4.4.8
moodle / moodle 4.5.0 4.5.4