Filter
AND

Versions

3.9.0
17
3.11.0
14
3.5.0
12
3.8.0
10
4.0.0
9
4.1.0
9
3.10.0
8
3.7.0
8
2.7.0
7
2.8.0
7
2.8.1
7
2.8.2
7
2.8.3
7
2.8.4
7
2.8.5
7
2.8.6
7
2.9.0
7
2.7.1
6
2.7.2
6
2.8.7
6
2.9.1
6
3.3.0
6
3.4.0
6
4.2.0
6
2.7.3
5
2.7.4
5
2.7.5
5
2.7.6
5
2.7.7
5
2.7.8
5
2.8.8
5
2.9.2
5
3.1.0
5
2.5.0
4
2.5.1
4
2.7.9
4
2.6.0
3
2.6.1
3
2.6.11
3
2.6.2
3
2.6.3
3
2.7.10
3
2.8.10
3
2.8.9
3
2.9.3
3
2.9.4
3
3.0.0
3
3.0.1
3
3.0.2
3
3.1.2
3
3.6.0
3
4.3.0
3
1.1.1
2
1.5.2
2
1.5.3
2
1.8.1
2
1.8.10
2
1.8.2
2
1.8.3
2
1.8.4
2
1.8.5
2
1.8.7
2
1.8.8
2
1.8.9
2
1.9
2
1.9.1
2
1.9.2
2
1.9.3
2
1.9.4
2
1.9.5
2
1.9.6
2
2.2.0
2
2.3.0
2
2.3.1
2
2.3.2
2
2.3.3
2
2.3.4
2
2.3.5
2
2.3.6
2
2.3.7
2
2.3.8
2
2.4.0
2
2.4.1
2
2.4.2
2
2.4.3
2
2.4.4
2
2.4.5
2
2.5.2
2
2.5.3
2
2.5.4
2
2.5.5
2
2.5.6
2
2.6.4
2
2.6.5
2
2.7.11
2
2.7.12
2
2.8.11
2
2.9.5
2
3.0.10
2
3.0.3
2
3.1.11
2
3.2.0
2
3.2.8
2
3.3.5
2
3.4.2
2
3.5
2
3.5.14
2
3.7.8
2
3.8.5
2
3.9.2
2
4.1.1
2
1.2.0
1
1.2.1
1
1.3.0
1
1.3.1
1
1.3.2
1
1.3.3
1
1.3.4
1
1.4.1
1
1.6
1
1.6.1
1
1.7
1
1.7.1
1
1.8
1
1.8.11
1
1.8.6
1
1.9.7
1
2.0
1
2.1
1
2.1.0
1
2.1.1
1
2.1.2
1
2.1.3
1
2.2
1
2.2.1
1
2.2.10
1
2.2.11
1
2.2.2
1
2.2.3
1
2.2.4
1
2.2.5
1
2.2.6
1
2.2.7
1
2.2.8
1
2.2.9
1
2.3.10
1
2.3.11
1
2.3.9
1
2.4.10
1
2.4.11
1
2.4.6
1
2.4.7
1
2.4.8
1
2.4.9
1
2.5.7
1
2.5.8
1
2.6.10
1
2.6.6
1
2.6.7
1
2.6.8
1
2.6.9
1
2.7.0-beta
1
2.7.0-rc1
1
2.7.0-rc2
1
2.7.13
1
2.7.15
1
2.8.12
1
2.9.6
1
2.9.7
1
3.0.0-beta
1
3.0.0-rc1
1
3.0.0-rc2
1
3.0.0-rc3
1
3.0.0-rc4
1
3.0.4
1
3.0.5
1
3.1
1
3.1.1
1
3.3
1
3.3.4
1
3.4
1
3.4.1
1
3.6
1
3.7
1
3.8
1
3.8.8
1
3.8.9
1
4.0
1
4.1
1
4.2
1
4.4.0
1

composer/moodle/moodleMsa-24-0001: denial of service risk in file picker unzip functionality

high
7.5
EPSS
0.04%
First published (updated )
CVE-2024-25978

composer/moodle/moodleMsa-24-0005: csrf risk in language import utility

high
8.8
EPSS
0.04%
First published (updated )
CVE-2024-25982

Moodle MoodleMoodle: authenticated remote code execution risk in lesson

high
8.8
First published (updated )
CVE-2023-5539

Moodle MoodleMoodle: authenticated remote code execution risk in imscp

high
8.8
First published (updated )
CVE-2023-5540

Moodle MoodleCSRF

high
8.8
First published (updated )
CVE-2021-43559

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/moodle/moodleSSRF

high
7.5
First published (updated )
CVE-2019-6970

Moodle MoodleA vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Users could assign thems…

high
8.8
First published (updated )
CVE-2019-3849

Moodle MoodleUnknown vulnerability in Moodle before 1.2 allows teachers to log in as administrators.

high
7.5
First published (updated )
CVE-2004-2234

Moodle MoodleSQL Injection

high
7.5
First published (updated )
CVE-2013-4313

Moodle MoodleCode Injection

high
7.5
First published (updated )
CVE-2013-5674

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Moodle MoodleMoodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random password salt in config.php, whi…

high
7.5
First published (updated )
CVE-2009-4304

Moodle MoodleA flaw was found in Moodle 3.4 to 3.4.1, and 3.3 to 3.3.4. If a user account using OAuth2 authentica…

high
8.1
First published (updated )
CVE-2018-1082

composer/moodle/moodlemoodle: CSRF risk in analytics management of models

high
8.8
EPSS
0.04%
First published (updated )
CVE-2024-34008

composer/moodle/moodlemoodle: CSRF risks due to misuse of confirm_sesskey

high
8.8
First published (updated )
CVE-2024-38276

Moodle MoodleSQL Injection

high
7.5
First published (updated )
CVE-2004-2232

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Moodle MoodleSQL Injection

high
7.5
First published (updated )
CVE-2005-3648

Moodle MoodleSQL Injection

high
7.5
First published (updated )
CVE-2006-4785

John Lim ADOdbSQL Injection

high
7.5
First published (updated )
CVE-2006-0146

John Lim ADOdbDynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, …

high
7.5
First published (updated )
CVE-2006-0147

Mrbs MrbsSQL Injection

high
7.5
First published (updated )
CVE-2007-6538

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Moodle MoodleMoodle 1.5.2 and earlier stores sensitive information under the web root with insufficient access co…

high
7.8
First published (updated )
CVE-2007-1647

Moodle MoodleMultiple PHP remote file inclusion vulnerabilities in Moodle 1.7.1 allow remote attackers to execute…

high
7.5
First published (updated )
CVE-2007-1429

Moodle MoodleSQL Injection

high
7.5
First published (updated )
CVE-2008-6124

Moodle MoodleSQL Injection

high
7.5
First published (updated )
CVE-2010-1615

Fedoraproject FedoraMoodle before 2.2.2 has an external enrolment plugin context check issue where capability checks are…

high
7.5
First published (updated )
CVE-2012-1170

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Moodle MoodleInfoleak

high
7.5
First published (updated )
CVE-2012-1155

Fedoraproject FedoraInput Validation

high
8.2
First published (updated )
CVE-2012-1168

composer/moodle/moodleMoodle before 2.2.2 has users' private files included in course backups

high
7.5
First published (updated )
CVE-2012-1156

Moodle MoodleInput Validation

high
7.5
First published (updated )
CVE-2012-0801

Moodle MoodleThe generate_password function in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and…

high
7.5
First published (updated )
CVE-2014-7845

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203