Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information.
Metrics
Affected Vendors & Products
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Thu, 23 Oct 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 23 Oct 2025 11:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information. | |
Title | Moodle: hidden group names visible to event creators | |
Weaknesses | CWE-200 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: fedora
Published:
Updated: 2025-10-23T14:48:12.585Z
Reserved: 2025-10-13T10:12:30.926Z
Link: CVE-2025-62400

Updated: 2025-10-23T14:48:08.308Z

Status : Received
Published: 2025-10-23T12:15:32.757
Modified: 2025-10-23T12:15:32.757
Link: CVE-2025-62400

No data.

No data.