Filter
AND
Moodle MoodleIn Moodle, insufficient capability checks meant message deletions were not limited to the current us…
5.3
First published (updated )
Moodle MoodleIn Moodle, the file repository's URL parsing required additional recursion handling to mitigate the …
7.5
First published (updated )
Moodle MoodleIn Moodle, in some circumstances, email notifications of messages could have the link back to the or…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleIn Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin.
9.8
First published (updated )
Moodle MoodleIn Moodle, insufficient capability checks made it possible to remove other users' calendar URL subsc…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/moodle/moodleInsufficient capability checks could allow users with the moodle/site:uploadusers capability to dele…
4.3
First published (updated )
Moodle MoodleUsers with the capability to configure badge criteria (teachers and managers by default) were able t…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleA denial-of-service risk was identified in the draft files area, due to it not respecting user file …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleInsufficient capability checks could lead to users accessing their grade report for courses where th…
4.3
First published (updated )
Moodle MoodleThe calendar:manageentries capability allowed managers to access or modify any calendar event, but s…
5.5
First published (updated )
Moodle MoodleInsufficient escaping of the LaTeX preamble made it possible for site administrators to read files a…
4.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleAn authentication bypass risk was identified in the external database authentication functionality, …
6.5
First published (updated )
Moodle MoodleInsufficient capability checks made it possible for teachers to download users outside of their cour…
4.3
First published (updated )
Moodle MoodleA session hijack risk was identified in the Shibboleth authentication plugin.
4.3
First published (updated )
Moodle MoodleInsufficient capability checks made it possible to fetch other users' calendar action events.
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.