A flaw was found in moodle. When creating an export of site administration presets, some sensitive secrets and keys are not being excluded from the export, which could result in them unintentionally being leaked if the presets are shared with a third party.
2024-11-11T13:15:03.530
2025-05-01T16:07:06.253
Analyzed
CVSSv3.1: 3.7 (LOW)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | moodle | moodle | < 4.1.12 | Yes |
Application | moodle | moodle | < 4.2.9 | Yes |
Application | moodle | moodle | < 4.3.6 | Yes |
Application | moodle | moodle | < 4.4.2 | Yes |