{"id":"CVE-2025-26529","details":"Description information displayed in the site administration live log \nrequired additional sanitizing to prevent a stored XSS risk.","aliases":["BIT-moodle-2025-26529","GHSA-wr88-x8cm-7cgq"],"modified":"2026-04-10T05:23:34.098845Z","published":"2025-02-24T20:15:33.677Z","references":[{"type":"ADVISORY","url":"https://moodle.org/mod/forum/discuss.php?d=466145"},{"type":"FIX","url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-84145"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/moodle/moodle","events":[{"introduced":"0ea3d45e04c3d54a3a472ddcb11606b30e227c50"},{"fixed":"4ab2ebfd5274abebc4b9b1527d13a5af70c6585d"},{"introduced":"fe7aff8093240cc373f1ddaa66ecb91c4bc0a09f"},{"fixed":"f4f9dd8eac286f1880738100afd71c585215f31f"},{"introduced":"ee91c6536f99e1633e2245780c4fe7f47340ed66"},{"fixed":"56a037e76606514584136e3c13e7ed4f53f34597"},{"introduced":"52c0da7c647bd6ba8c5f61882d88959821a1fb41"},{"fixed":"cd6600da14290f2ab097aba8ce9d107e21c21fff"}],"database_specific":{"versions":[{"introduced":"4.1.0"},{"fixed":"4.1.16"},{"introduced":"4.3.0"},{"fixed":"4.3.10"},{"introduced":"4.4.0"},{"fixed":"4.4.6"},{"introduced":"4.5.0"},{"fixed":"4.5.2"}]}}],"versions":["v4.1.0","v4.1.1","v4.1.10","v4.1.11","v4.1.12","v4.1.13","v4.1.14","v4.1.15","v4.1.2","v4.1.3","v4.1.4","v4.1.5","v4.1.6","v4.1.7","v4.1.8","v4.1.9","v4.3.0","v4.3.1","v4.3.2","v4.3.3","v4.3.4","v4.3.5","v4.3.6","v4.3.7","v4.3.8","v4.3.9","v4.4.0","v4.4.1","v4.4.2","v4.4.3","v4.4.4","v4.4.5","v4.5.0","v4.5.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-26529.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}