Moodle Moodle is an open source Learning Platform
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in any Moodle product.
RSS Feeds for Moodle security vulnerabilities
Create a CVE RSS feed including security vulnerabilities found in Moodle products with stack.watch. Just hit watch, then grab your custom RSS feed url.
Products by Moodle Sorted by Most Security Vulnerabilities since 2018
By the Year
In 2025 there have been 17 vulnerabilities in Moodle. Last year, in 2024 Moodle had 50 security vulnerabilities published. Right now, Moodle is on track to have less security vulnerabilities in 2025 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 17 | 0.00 |
| 2024 | 50 | 6.01 |
| 2023 | 46 | 6.34 |
| 2022 | 46 | 6.40 |
| 2021 | 21 | 5.94 |
| 2020 | 20 | 6.58 |
| 2019 | 17 | 5.98 |
| 2018 | 17 | 6.58 |
It may take a day or so for new Moodle vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Moodle Security Vulnerabilities
A flaw was found in Moodle
CVE-2025-3643
- April 25, 2025
A flaw was found in Moodle. The return URL in the policy tool required additional sanitizing to prevent a reflected Cross-site scripting (XSS) risk.
A flaw was found in Moodle
CVE-2025-3645
- April 25, 2025
A flaw was found in Moodle. Insufficient capability checks in a messaging web service allowed users to view other users' names and online statuses.
A flaw was discovered in Moodle
CVE-2025-3647
- April 25, 2025
A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve.
A security vulnerability was found in Moodle where confidential information
CVE-2025-3637
- April 25, 2025
A security vulnerability was found in Moodle where confidential information that prevents cross-site request forgery (CSRF) attacks was shared publicly through the site's URL. This vulnerability occurred specifically on two types of pages within the mod_data module: edit and delete pages.
A flaw was found in Moodle
CVE-2025-3642
- April 25, 2025
A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS EQUELLA repository. By default, this was only available to teachers and managers on sites with the EQUELLA repository enabled.
A flaw was found in Moodle
CVE-2025-3641
- April 25, 2025
A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS Dropbox repository. By default, this was only available to teachers and managers on sites with the Dropbox repository enabled.
A flaw was found in Moodle
CVE-2025-3640
- April 25, 2025
A flaw was found in Moodle. Insufficient capability checks made it possible for a user enrolled in a course to access some details, such as the full name and profile image URL, of other users they did not have permission to access.
A flaw was found in Moodle
CVE-2025-3638
- April 25, 2025
A flaw was found in Moodle. The analysis request action in the Brickfield tool did not include the necessary token to prevent a Cross-site request forgery (CSRF) risk.
A flaw was found in Moodle
CVE-2025-3644
- April 25, 2025
A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify.
A flaw was found in Moodle
CVE-2025-3636
- April 25, 2025
A flaw was found in Moodle. This vulnerability allows unauthorized users to access and view RSS feeds due to insufficient capability checks.