CVE-2025-26527

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Feb 24, 2025

CWE ID 1230

Summary

CVE-2025-26527 is a cybersecurity vulnerability that affects the tag functionality of a certain software. Contrary to expectations, hidden tags that should not be visible to users can be discovered through the tag search page or the tags block. This issue may lead to unintended access or exposure of sensitive information. Users are advised to update their software to the latest version to mitigate this risk. The vulnerability could potentially be exploited by attackers to gain unauthorized access or insight into restricted areas.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Moodle

Affected Vendors

Moodle

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/3S7KCL
https://www.cve.org/CVERecord?id=CVE-2025-26527
https://nvd.nist.gov/vuln/detail/CVE-2025-26527

Back to Vulnerability Database