An error-handling issue in the Moodle router (r.php) could cause the application to display internal directory listings when specific HTTP headers were not properly configured.
Metrics
Affected Vendors & Products
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Thu, 23 Oct 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 23 Oct 2025 11:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An error-handling issue in the Moodle router (r.php) could cause the application to display internal directory listings when specific HTTP headers were not properly configured. | |
Title | Moodle: router (r.php) could expose application directories | |
Weaknesses | CWE-548 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: fedora
Published:
Updated: 2025-10-23T14:13:02.325Z
Reserved: 2025-10-13T10:12:30.925Z
Link: CVE-2025-62396

Updated: 2025-10-23T14:12:58.854Z

Status : Received
Published: 2025-10-23T12:15:31.913
Modified: 2025-10-23T12:15:31.913
Link: CVE-2025-62396

No data.

No data.