GHSA-qrqv-26gf-xgwh
GitHub Security Advisory
Moodle LFI vulnerability when restoring malformed block backups
✓ GitHub Reviewed
MODERATE
Has CVE
Advisory Details
A flaw was found in moodle. A local file may include risks when restoring block backups.
Affected Packages
Packagist
moodle/moodle
Affected versions:
0
(fixed in 4.1.12)
Packagist
moodle/moodle
Affected versions:
4.2.0-beta
(fixed in 4.2.9)
Packagist
moodle/moodle
Affected versions:
4.3.0-beta
(fixed in 4.3.6)
Packagist
moodle/moodle
Affected versions:
4.4.0-beta
(fixed in 4.4.2)
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: September 12, 2025 6:34 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.