CVE-2025-67849 | Moodle up to 4.5.7/5.0.3/5.1.0 AI Prompt Response cross site scripting

Inserito da Angelo Barbosa | Feb 3, 2026 | CVE

A vulnerability classified as problematic was found in Moodle up to 4.5.7/5.0.3/5.1.0. The impacted element is an unknown function of the component AI Prompt Response Handler. Executing a manipulation can lead to cross site scripting.

This vulnerability is handled as CVE-2025-67849. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2025-67849 | Moodle up to 4.5.7/5.0.3/5.1.0 AI Prompt Response cross site scripting

Post correlati

CVE-2025-64642 | Mirion Medical EC2 Software NMIS BioDose up to 22.02 Installation Directory permission assignment (icsma-25-336-01)

CVE-2024-1833 | SourceCodester Employee Management System 1.0 /Account/login.php txtusername sql injection

CVE-2023-48268 | Mattermost up to 7.8.12/8.1.3/9.0.1/9.1.0 Zip resource consumption

CVE-2025-25741 | D-Link DIR-853 A1 1.20B07 SetIPv6PppoeSettings Module IPv6_PppoePassword stack-based overflow