24Şub
CVE-2025-26528 | Moodle up to 4.1.15/4.3.9/4.4.5/4.5.1 Question Type cross site scripting
A vulnerability was found in Moodle up to 4.1.15/4.3.9/4.4.5/4.5.1. It has been classified as problematic. This affects an unknown part of the component Question Type Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-26528. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.