Metrics
Affected Vendors & Products
Source | ID | Title |
---|---|---|
![]() |
EUVD-2025-12531 | A security vulnerability was discovered in Moodle that allows students to enroll themselves in courses without completing all the necessary safety checks. Specifically, users can sign up for courses prematurely, even if they haven't finished two-step verification processes. |
![]() |
GHSA-qhc7-xhc2-7p7w | Moodle self enrollment available before completing second factor with MFA enabled |
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Tue, 24 Jun 2025 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Moodle
Moodle moodle |
|
CPEs | cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:* | |
Vendors & Products |
Moodle
Moodle moodle |
Fri, 25 Apr 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 25 Apr 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A security vulnerability was discovered in Moodle that allows students to enroll themselves in courses without completing all the necessary safety checks. Specifically, users can sign up for courses prematurely, even if they haven't finished two-step verification processes. | |
Title | Moodle: moodle allows course self-enrolment before completing mfa | |
Weaknesses | CWE-287 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: fedora
Published:
Updated: 2025-04-25T14:42:48.989Z
Reserved: 2025-04-15T09:52:09.173Z
Link: CVE-2025-3634

Updated: 2025-04-25T14:24:00.284Z

Status : Analyzed
Published: 2025-04-25T14:15:22.917
Modified: 2025-06-24T16:16:11.150
Link: CVE-2025-3634

No data.

Updated: 2025-06-24T09:44:20Z