Vulnerability Database
289,599
Total vulnerabilities in the database
CVE-2025-3635
A security vulnerability was discovered in Moodle that allows anyone to duplicate existing tours without needing to log in due to a lack of protection against cross-site request forgery (CSRF) attacks.
| Software | From | Fixed in |
|---|---|---|
moodle / moodle
|
- | 4.1.18 |
|
moodle / moodle
|
4.3.0-beta | 4.3.12 |
|
moodle / moodle
|
4.4.0-beta | 4.4.8 |
|
moodle / moodle
|
4.5.0-beta | 4.5.4 |
| moodle / moodle | 4.3.0 | 4.3.12 |
| moodle / moodle | 4.4.0 | 4.4.8 |
| moodle / moodle | 4.5.0 | 4.5.4 |
| moodle / moodle | - | 4.1.18 |