WP-Safety

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Security & Risk Analysis

wordpress.org/plugins/moowoodle

Moodle LMS integration with WordPress to sell Moodle courses through WooCommerce and automate student enrollment.

800 active installs v3.3.6 PHP 8.0+ WP 6.0.0+ Updated Sep 25, 2025
lmslms-integrationmoodlemoodle-wordpress-connectsell-course
98
A · Safe
CVEs total1
Unpatched0
Last CVENov 16, 2024
Plugin page Download
Safety Verdict

Is MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Safe to Use in 2026?

Generally Safe

Score 98/100

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Nov 16, 2024Updated 6mo ago
Risk Assessment

The 'moowoodle' plugin version 3.3.6 demonstrates a generally strong security posture with several good practices in place. The static analysis reveals a limited attack surface with no publicly accessible entry points found without authentication. Notably, all SQL queries utilize prepared statements, and a significant majority of output operations are properly escaped, mitigating common injection risks. The presence of nonce and capability checks further bolsters its defenses against unauthorized actions. However, a past high-severity vulnerability involving the insertion of sensitive information into log files, though now patched, indicates a potential area of concern that requires ongoing vigilance. The static analysis also flags a single file operation and an external HTTP request, which, while not inherently risky, could become vectors for vulnerabilities if not handled with strict sanitization and validation, especially if the taint analysis data were incomplete. The bundled TinyMCE library is also outdated, posing a potential risk if it has known vulnerabilities that were not covered by the CVE history.

Key Concerns

  • Bundled outdated library: TinyMCE v5.1.1
  • 1 file operation found
  • 1 external HTTP request found
  • Past high severity vulnerability (sensitive info log)
Vulnerabilities
1

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

CVE-2025-24556high · 7.5Insertion of Sensitive Information into Log File

MooWoodle – WordPress & Moodle LMS Integration Bridge <= 3.2.4 - Unauthenticated Sensitive Information Exposure

Nov 16, 2024 Patched in 3.2.5 (102d)
Code Analysis
Analyzed Mar 16, 2026

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
13 prepared
Unescaped Output
16
78 escaped
Nonce Checks
10
Capability Checks
8
File Operations
1
External Requests
1
Bundled Libraries
1

Bundled Libraries

TinyMCE5.1.1

SQL Query Safety

100% prepared13 total queries

Output Escaping

83% escaped94 total outputs
Attack Surface

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_get_linkable_courseclasses\Core\Course.php:27
WordPress Hooks 37
actionadmin_menuclasses\Admin.php:23
actionadmin_enqueue_scriptsclasses\Admin.php:25
filterallowed_redirect_hostsclasses\Admin.php:28
actionload_script_textdomain_relative_pathclasses\Admin.php:30
actioninitclasses\Block.php:33
actionenqueue_block_assetsclasses\Block.php:35
filterwoocommerce_product_data_tabsclasses\Core\Course.php:25
actionwoocommerce_product_data_panelsclasses\Core\Course.php:26
actionadmin_enqueue_scriptsclasses\Core\Course.php:28
filterwoocommerce_product_classclasses\Core\Product.php:23
actionwoocommerce_process_product_metaclasses\Core\Product.php:26
filterwoocommerce_product_data_store_cpt_get_products_queryclasses\Core\Product.php:29
actionmoowoodle_clean_course_previous_linkclasses\Core\Product.php:31
actionwp_trash_postclasses\Core\Product.php:33
actionuntrash_postclasses\Core\Product.php:35
actionadmin_noticesclasses\Core\Product.php:215
actioninitclasses\EndPoint.php:29
filterwoocommerce_account_menu_itemsclasses\EndPoint.php:30
actionwp_enqueue_scriptsclasses\EndPoint.php:32
actionwoocommerce_order_status_completedclasses\Enrollment.php:23
actionwoocommerce_thankyouclasses\Enrollment.php:24
actionwoocommerce_after_shop_loop_item_titleclasses\Enrollment.php:25
actionwoocommerce_product_meta_startclasses\Enrollment.php:26
actionwoocommerce_cart_updatedclasses\Enrollment.php:27
actionwp_enqueue_scriptsclasses\FrontendScripts.php:35
actionadmin_enqueue_scriptsclasses\FrontendScripts.php:36
actionbefore_woocommerce_initclasses\MooWoodle.php:76
actionwoocommerce_loadedclasses\MooWoodle.php:77
actionplugins_loadedclasses\MooWoodle.php:78
filterplugin_row_metaclasses\MooWoodle.php:79
actioninitclasses\MooWoodle.php:80
filterwoocommerce_email_classesclasses\MooWoodle.php:122
actionadmin_noticesclasses\MooWoodle.php:169
actionrest_api_initclasses\RestAPI.php:26
actionrest_api_initclasses\RestAPI.php:31
filtermoowoodle_process_connection_test_synchronizationclasses\RestAPI.php:34
filtermoowoodle_process_course_synchronizationclasses\RestAPI.php:35
Maintenance & Trust

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedSep 25, 2025
PHP min version8.0
Downloads37K

Community Trust

Rating86/100
Number of ratings39
Active installs800
Alternatives

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Alternatives

Edwiser Bridge – WordPress Moodle Integration

Edwiser Bridge – WordPress Moodle Integration

edwiser-bridge

B
83

Edwiser Bridge integrates WordPress with Moodle LMS & provides an easy option to import and sell Moodle courses using WordPress.

5K 7 CVEs
The Ultimate Video Player For WordPress – by Presto Player

The Ultimate Video Player For WordPress – by Presto Player

presto-player

A
99

The Ultimate WordPress Video Player.

100K 2 CVEs
Tutor LMS – eLearning and online course solution

Tutor LMS – eLearning and online course solution

tutor

B
75

A complete WordPress LMS plugin to create any eLearning website easily.

100K 61 CVEs
LearnPress – WordPress LMS Plugin for Create and Sell Online Courses

LearnPress – WordPress LMS Plugin for Create and Sell Online Courses

learnpress

B
76

A WordPress LMS Plugin to create WordPress Learning Management System. Turn your WordPress to LMS WordPress Website with Courses, Lessons, Quizzes &am &hellip;

80K 64 CVEs
LearnPress – Course Review

LearnPress – Course Review

learnpress-course-review

A
99

LearnPress Course Review - An extension plugin for LearnPress.

30K 1 CVE
Developer Profile

MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce Developer Profile

DualCube

4 plugins · 830 total installs

73
trust score
Avg Security Score
92/100
Avg Patch Time
102 days
View full developer profile
Detection Fingerprints

How We Detect MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/moowoodle/assets/js/externals//wp-content/plugins/moowoodle/release/assets/js/externals//wp-content/plugins/moowoodle/assets/js//wp-content/plugins/moowoodle/release/assets/js/
Script Paths
/wp-content/plugins/moowoodle/assets/js/externals//wp-content/plugins/moowoodle/release/assets/js/externals//wp-content/plugins/moowoodle/assets/js//wp-content/plugins/moowoodle/release/assets/js/

HTML / DOM Fingerprints

CSS Classes
moowoodle-my-course
Data Attributes
data-endpoint
JS Globals
MooWoodle
FAQ

Frequently Asked Questions about MooWoodle – WordPress Moodle LMS Integration, Sell Moodle Courses via WooCommerce