Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/moodle/moodle@4.5.7
Typecomposer
Namespacemoodle
Namemoodle
Version4.5.7
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version4.5.8
Latest_non_vulnerable_version5.1.2
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2h6c-6mgm-akc2
vulnerability_id VCID-2h6c-6mgm-akc2
summary 
Moodle vulnerable to brute-force password guesses
Moodle's mobile and web service authentication endpoints did not sufficiently restrict repeated password attempts, making them susceptible to brute-force attacks.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62399
reference_id
reference_type
scores
0
value 0.00088
scoring_system epss
scoring_elements 0.25153
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62399
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404432
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:51:39Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404432
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/e4d02567c922c537086de9f59f063ca073552a3a
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/e4d02567c922c537086de9f59f063ca073552a3a
4
reference_url https://moodle.org/mod/forum/discuss.php?d=470388
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470388
5
reference_url https://access.redhat.com/security/cve/CVE-2025-62399
reference_id CVE-2025-62399
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:51:39Z/
url https://access.redhat.com/security/cve/CVE-2025-62399
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62399
reference_id CVE-2025-62399
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62399
7
reference_url https://github.com/advisories/GHSA-m58f-9pvv-8mp2
reference_id GHSA-m58f-9pvv-8mp2
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m58f-9pvv-8mp2
fixed_packages
0
url pkg:composer/moodle/moodle@4.1.21
purl pkg:composer/moodle/moodle@4.1.21
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.1.21
1
url pkg:composer/moodle/moodle@4.4.11
purl pkg:composer/moodle/moodle@4.4.11
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11
2
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
3
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62399, GHSA-m58f-9pvv-8mp2
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2h6c-6mgm-akc2
1
url VCID-7z2w-xpn7-gbhm
vulnerability_id VCID-7z2w-xpn7-gbhm
summary 
Moodle does not properly enforce MFA
A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor authentication under certain conditions, potentially compromising user accounts.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62398
reference_id
reference_type
scores
0
value 0.00069
scoring_system epss
scoring_elements 0.21364
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62398
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404431
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:57:39Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404431
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/67005f8b2098096f4c7ca4f78ab9ce69415d703b
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/67005f8b2098096f4c7ca4f78ab9ce69415d703b
4
reference_url https://github.com/moodle/moodle/commit/a2078f781ae065ca1f781bd159c7615c84afcaa5
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/a2078f781ae065ca1f781bd159c7615c84afcaa5
5
reference_url https://moodle.org/mod/forum/discuss.php?d=470387
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470387
6
reference_url https://access.redhat.com/security/cve/CVE-2025-62398
reference_id CVE-2025-62398
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:57:39Z/
url https://access.redhat.com/security/cve/CVE-2025-62398
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62398
reference_id CVE-2025-62398
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62398
8
reference_url https://github.com/advisories/GHSA-25wf-7x6c-wmpf
reference_id GHSA-25wf-7x6c-wmpf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-25wf-7x6c-wmpf
fixed_packages
0
url pkg:composer/moodle/moodle@4.4.11
purl pkg:composer/moodle/moodle@4.4.11
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11
1
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
2
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62398, GHSA-25wf-7x6c-wmpf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7z2w-xpn7-gbhm
2
url VCID-a6w6-penj-kuds
vulnerability_id VCID-a6w6-penj-kuds
summary 
Moodle has a time restriction bypass
An issue in Moodle's timed assignment feature allowed students to bypass the time restriction, potentially giving them more time than allowed to complete an assessment.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62401
reference_id
reference_type
scores
0
value 0.00041
scoring_system epss
scoring_elements 0.12965
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62401
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404434
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:38:17Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404434
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/78a3fe6c618676dfc53ea538abbfe35e60674eeb
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/78a3fe6c618676dfc53ea538abbfe35e60674eeb
4
reference_url https://moodle.org/mod/forum/discuss.php?d=470390
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470390
5
reference_url https://access.redhat.com/security/cve/CVE-2025-62401
reference_id CVE-2025-62401
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:38:17Z/
url https://access.redhat.com/security/cve/CVE-2025-62401
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62401
reference_id CVE-2025-62401
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62401
7
reference_url https://github.com/advisories/GHSA-w29j-8phw-ffjf
reference_id GHSA-w29j-8phw-ffjf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-w29j-8phw-ffjf
fixed_packages
0
url pkg:composer/moodle/moodle@4.1.21
purl pkg:composer/moodle/moodle@4.1.21
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.1.21
1
url pkg:composer/moodle/moodle@4.4.11
purl pkg:composer/moodle/moodle@4.4.11
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11
2
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
3
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62401, GHSA-w29j-8phw-ffjf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a6w6-penj-kuds
3
url VCID-de7j-3de2-s3ee
vulnerability_id VCID-de7j-3de2-s3ee
summary 
Moodle's error handling leads to sensitive information disclosure
An error-handling issue in the Moodle router (r.php) could cause the application to display internal directory listings when specific HTTP headers were not properly configured.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62396
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.13577
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62396
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404429
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:12:55Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404429
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/5d4910509eeaac8403d18ec8f259e29d2f11527e
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/5d4910509eeaac8403d18ec8f259e29d2f11527e
4
reference_url https://github.com/moodle/moodle/commit/5e7d5abc483d0511ebfc2042075eabcc392ff4ce
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/5e7d5abc483d0511ebfc2042075eabcc392ff4ce
5
reference_url https://moodle.org/mod/forum/discuss.php?d=470385
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470385
6
reference_url https://access.redhat.com/security/cve/CVE-2025-62396
reference_id CVE-2025-62396
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:12:55Z/
url https://access.redhat.com/security/cve/CVE-2025-62396
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62396
reference_id CVE-2025-62396
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62396
8
reference_url https://github.com/advisories/GHSA-c5cj-xp43-qcc3
reference_id GHSA-c5cj-xp43-qcc3
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-c5cj-xp43-qcc3
fixed_packages
0
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
1
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62396, GHSA-c5cj-xp43-qcc3
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-de7j-3de2-s3ee
4
url VCID-fcf4-tf5h-hfcr
vulnerability_id VCID-fcf4-tf5h-hfcr
summary Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62400
reference_id
reference_type
scores
0
value 0.00059
scoring_system epss
scoring_elements 0.18778
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62400
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404433
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:48:02Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404433
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/0c70d67059658879a71152ea075c74154a627d05
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/0c70d67059658879a71152ea075c74154a627d05
4
reference_url https://moodle.org/mod/forum/discuss.php?d=470389
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470389
5
reference_url https://access.redhat.com/security/cve/CVE-2025-62400
reference_id CVE-2025-62400
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:48:02Z/
url https://access.redhat.com/security/cve/CVE-2025-62400
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62400
reference_id CVE-2025-62400
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62400
7
reference_url https://github.com/advisories/GHSA-422v-w6c5-vq42
reference_id GHSA-422v-w6c5-vq42
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-422v-w6c5-vq42
fixed_packages
0
url pkg:composer/moodle/moodle@4.1.21
purl pkg:composer/moodle/moodle@4.1.21
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.1.21
1
url pkg:composer/moodle/moodle@4.4.11
purl pkg:composer/moodle/moodle@4.4.11
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11
2
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
3
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62400, GHSA-422v-w6c5-vq42
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fcf4-tf5h-hfcr
5
url VCID-ysax-7hvs-mkct
vulnerability_id VCID-ysax-7hvs-mkct
summary 
Moodle sends quiz-related messages to inactive/suspended users
Moodle failed to verify enrolment status correctly when sending quiz notifications. As a result, suspended or inactive users might receive quiz-related messages, leaking limited course information.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62394
reference_id
reference_type
scores
0
value 0.00051
scoring_system epss
scoring_elements 0.16268
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62394
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404427
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:14:03Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404427
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/022bfbfb564d8f3866a43d26eed215213bbdd28a
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/022bfbfb564d8f3866a43d26eed215213bbdd28a
4
reference_url https://moodle.org/mod/forum/discuss.php?d=470383
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470383
5
reference_url https://access.redhat.com/security/cve/CVE-2025-62394
reference_id CVE-2025-62394
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:14:03Z/
url https://access.redhat.com/security/cve/CVE-2025-62394
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62394
reference_id CVE-2025-62394
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62394
7
reference_url https://github.com/advisories/GHSA-8fcv-4qp9-pg32
reference_id GHSA-8fcv-4qp9-pg32
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8fcv-4qp9-pg32
fixed_packages
0
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
1
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62394, GHSA-8fcv-4qp9-pg32
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ysax-7hvs-mkct
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7