CVE-2025-67851: Moodle formula injection vulnerability
A flaw was found in Moodle. This formula injection vulnerability occurs when data fields are exported without proper escaping. A remote attacker could exploit this by providing malicious data that, when exported and opened in a spreadsheet, allows arbitrary formulas to execute. This can lead to compromised data integrity and unintended operations within the spreadsheet.
References
- access.redhat.com/security/cve/CVE-2025-67851
- bugzilla.redhat.com/show_bug.cgi?id=2423841
- github.com/advisories/GHSA-qfh6-h7j6-fvjv
- github.com/moodle/moodle
- github.com/moodle/moodle/commit/29820c5ff4ef381c7a743091ec5c68ac82903b22
- github.com/moodle/moodle/commit/aa66bacd0783cbc33528fba9c2adca1f685a59bd
- github.com/moodle/moodle/commit/dc57ccc491a2a04032445a3ee92fd0d335ebd746
- moodle.org/mod/forum/discuss.php?d=471301
- nvd.nist.gov/vuln/detail/CVE-2025-67851
Code Behaviors & Features
Detect and mitigate CVE-2025-67851 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →