CVE-2026-26045

HIGH

Moodle - Code Injection

Title source: llm

Description

A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files were not properly validated during processing. If a malicious backup file is restored, it could lead to unintended execution of server-side code. Since restore capabilities are typically available to privileged users, exploitation requires authenticated access. Successful exploitation could result in full compromise of the Moodle server.

References (2)

[Vendor Advisory] https://access.redhat.com/security/cve/CVE-2026-26045

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=2440901

Scores

CVSS v3 7.2

EPSS 0.0009

EPSS Percentile 26.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-94

Status published

Affected Products (2)

moodle/moodle < 5.1.2Packagist

moodle/moodle < 4.5.9

Timeline

Published Feb 21, 2026

Tracked Since Feb 21, 2026