Vulnerability Database

321,822

Total vulnerabilities in the database

CVE-2025-67857

A flaw was found in moodle. During anonymous assignment submissions, user identifiers were inadvertently exposed in URLs. This data exposure allows unauthorized viewers to see internal user IDs, compromising the intended anonymity and potentially leading to information disclosure.

Published: Feb 3, 2026
Updated: Feb 4, 2026
CVE: CVE-2025-67857
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CWEs:

CWE-201

Affected Software
References

No affected software listed.

https://access.redhat.com/security/cve/CVE-2025-67857
https://bugzilla.redhat.com/show_bug.cgi?id=2423868
https://moodle.org/mod/forum/discuss.php?d=471307

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo