Filter
-Infinity
0
Trending
Software
composer/moodle/moodlemoodle: CSRF risks due to misuse of confirm_sesskey
8.8
First published (updated )
composer/moodle/moodlemoodle: CSRF risk in analytics management of models
8.8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MoodleIn Moodle, insufficient capability checks meant message deletions were not limited to the current us…
5.3
First published (updated )
MoodleIn Moodle, the file repository's URL parsing required additional recursion handling to mitigate the …
7.5
First published (updated )
MoodleIn Moodle, in some circumstances, email notifications of messages could have the link back to the or…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MoodleIn Moodle, insufficient capability checks made it possible to remove other users' calendar URL subsc…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MoodleMoodle: xss risk when outputting database activity filter data
6.1
First published (updated )
MoodleIn Moodle, insufficient limitations in some quiz web services made it possible for students to bypas…
4.3
First published (updated )
composer/moodle/moodleMsa-24-0002: forum search accepted random parameters in its url
5.3
EPSS
0.04%
First published (updated )
composer/moodle/moodleMsa-24-0001: denial of service risk in file picker unzip functionality
7.5
EPSS
0.04%
First published (updated )
composer/moodle/moodleMsa-24-0003: h5p attempts report did not respect activity group settings
5.3
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/moodle/moodleMsa-24-0004: forum export did not respect activity group settings
5.3
EPSS
0.04%
First published (updated )
composer/moodle/moodleMsa-24-0005: csrf risk in language import utility
8.8
EPSS
0.04%
First published (updated )
composer/moodle/moodleMsa-24-0006: idor on dashboard comments block
5.3
EPSS
0.04%
First published (updated )
Moodle 4.3Out of support
First published (updated )
Moodle 4.3Out of support
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/moodleMoodle: cache poisoning risk with endpoint revision numbers
5.3
First published (updated )
redhat/moodleMoodle: xss risk when previewing data in course upload tool
6.1
First published (updated )
MoodleMoodle: stored xss in quiz grading report via user id number
5.4
First published (updated )
composer/moodle/moodleMoodle: rce due to lfi risk in some misconfigured shared hosting environments
9.8
First published (updated )
redhat/moodleMoodle: insufficient capability checks when updating the parent of a course category
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.