Description

A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS Dropbox repository. By default, this was only available to teachers and managers on sites with the Dropbox repository enabled.

Remediation

References

CVE-2025-3641

Related Vulnerabilities

Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6752)

MySQL CVE-2018-2813 Vulnerability (CVE-2018-2813)

WordPress Plugin Popup Modal For Youtube Cross-Site Scripting (1.0.1)

WordPress Plugin Gwolle Guestbook Cross-Site Scripting (2.5.3)

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3833)

Severity

High

Classification

CVE-2025-3641 CWE-94 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities