CVE-2025-67849

Name of the Vulnerable Software and Affected Versions Moodle (affected versions not specified)

Description A flaw exists in Moodle due to improper sanitization of AI prompt responses. This allows attackers to inject malicious HTML or script into web pages. Successful exploitation could lead to session theft or manipulation of the user interface when other users view the compromised pages.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.