2440901 – (CVE-2026-26045) CVE-2026-26045 moodle: Moodle: Improper Validation in File Restore Functionality Leading to Remote Code Execution

Bug 2440901 (CVE-2026-26045) - CVE-2026-26045 moodle: Moodle: Improper Validation in File Restore Functionality Leading to Remote Code Execution

Summary: CVE-2026-26045 moodle: Moodle: Improper Validation in File Restore Functional...

Keywords:
Status:	NEW
Alias:	CVE-2026-26045
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2440902
Blocks:
TreeView+	depends on / blocked

Reported:	2026-02-19 08:45 UTC by OSIDB Bzimport
Modified:	2026-02-19 08:49 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-02-19 08:45:20 UTC

A Remote Code Execution vulnerability exists in Moodle’s file restore functionality due to insufficient validation of backup file contents during the restore process. An authenticated user with restore permissions can upload a specially crafted Moodle backup archive that may trigger execution of arbitrary PHP code when processed by the server. Successful exploitation could result in complete compromise of the Moodle instance, including unauthorized access to data, system modification, or service disruption.

Note You need to log in before you can comment on or make changes to this bug.