CVE-2026-26045

Published: Feb 21, 2026Modified: Feb 26, 2026

7.2

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: patrick@puiterwijk.org (Secondary)

Description

A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files were not properly validated during processing. If a malicious backup file is restored, it could lead to unintended execution of server-side code. Since restore capabilities are typically available to privileged users, exploitation requires authenticated access. Successful exploitation could result in full compromise of the Moodle server.

Affected (3)

Products: Moodle: Moodle

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Moodle Moodle	Before 4.5.9
Moodle Moodle	From 5.0.0 to 5.0.5
Moodle Moodle	From 5.1.0 to 5.1.2

Related CWEs

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (2)

https://access.redhat.com/security/cve/CVE-2026-26045

Source: patrick@puiterwijk.org

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2440901

Source: patrick@puiterwijk.org

Third Party Advisory

Timeline

No history available yet.