Filter
AND
composer/moodle/moodleMoodle: forum summary report shows students from other groups when in separate groups mode
3.3
First published (updated )
composer/moodle/moodleMoodle: rce due to lfi risk in some misconfigured shared hosting environments
9.8
First published (updated )
Moodle MoodleMoodle: insufficient capability checks when updating the parent of a course category
5.3
First published (updated )
Moodle MoodleMoodle: cache poisoning risk with endpoint revision numbers
5.3
First published (updated )
Moodle MoodleMoodle: xss risk when previewing data in course upload tool
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleMoodle: stored xss in quiz grading report via user id number
5.4
First published (updated )
Moodle MoodleMoodle: auto-populated h5p author name causes a potential information leak
5.3
First published (updated )
Moodle MoodleMoodle: stored xss and potential idor risk in wiki comments
6.5
First published (updated )
redhat/moodleMoodle: duplicating a bigbluebutton activity assigns the same meeting id
3.3
First published (updated )
Moodle MoodleMoodle: xss risk when using csv grade import method
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleMoodle: authenticated remote code execution risk in imscp
8.8
First published (updated )
Moodle MoodleMoodle: authenticated remote code execution risk in lesson
8.8
First published (updated )
Moodle MoodleMoodle: ssrf risk due to insufficient check on the curl blocked hosts
7.5
First published (updated )
Moodle MoodleMoodle: minor sql injection risk on mnet sso access control page
6.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleMoodle: minor sql injection risk in external wiki method for listing pages
7.3
First published (updated )
Fedoraproject FedoraMoodle: tinymce loaders susceptible to arbitrary folder creation
6.5
First published (updated )
Moodle MoodleMoodle: course participation report shows roles the user should not see
4.3
First published (updated )
Moodle MoodleMoodle: teacher can access names of users they do not have permission to access
4.3
First published (updated )
Moodle MoodleMoodle: csrf risk in resetting all templates of a database activity
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleMoodle: users' name enumeration possible via idor on learning plans page
4.3
First published (updated )
Moodle MoodleMoodle: pix helper potential mustache code injection risk
9.8
First published (updated )
Moodle MoodleMoodle: algebra filter xss when filter is misconfigured
6.1
First published (updated )
Moodle MoodleMoodle: xss risk when outputting database activity filter data
6.1
First published (updated )
Moodle MoodleMoodle: authenticated arbitrary file read through malformed backup file
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleMoodle: authenticated sql injection via availability check
8.8
First published (updated )
Moodle MoodleMoodle: possible to set the preferred "start page" of other users
8.2
First published (updated )
Moodle MoodleMoodle: reflected xss risk in blog search
6.1
First published (updated )
Moodle MoodleMoodle: reflected xss risk in some returnurl parameters
6.1
First published (updated )