CVE-2025-26527

Non-searchable tags can still be discovered on the tag search page and in the tags block

CVSS 5.3 MEDIUMEPSS 0.3%CWE-1230

In short

Users can discover tags that should be hidden from them by using the tag search page or viewing the tags block. This undermines access controls and may expose sensitive tag information.

Technical detail

A broken access control vulnerability allows authenticated users to enumerate non-searchable tags through the tag search endpoint or tags UI component without proper visibility filters. The vulnerability exists due to insufficient authorization checks on tag discovery mechanisms, potentially exposing sensitive categorization metadata.

Summary generated and translated by AI from the official description.

Tags not expected to be visible to a user could still be discovered by them via the tag search page or in the tags block.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Moodle Project · moodle

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-83941 https://moodle.org/mod/forum/discuss.php?d=466143