Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
GHSA-48rq-vj58-2mh6
Moodle creates a MoodleMobile web-service token with an infinite lifetime
GHSA-8rc7-4qfv-4484
Moodle does not properly restrict file access
GHSA-f9m9-494r-w36p
Moodle allows bypass of intended access restrictions
GHSA-2vhr-4mhq-m35c
Moodle does not properly restrict access
GHSA-6xpm-q8x9-j3rw
Moodle allows attackers to bypass intended access restrictions
GHSA-fc5p-vj3h-x7g4
Moodle allows attackers to obtain sensitive information
GHSA-j465-7mp6-3xg3
Moodle places a session key in a URL
GHSA-2jcw-r79x-4r5v
Moodle does not set the RISK_XSS bit for graders
GHSA-xfgq-37vh-892j
Atto in Moodle 2.8.x before 2.8.9 and 2.9.x before 2.9.3 allows remote attackers to cause a denial of service (disk consumption) by leveraging the guest role and entering drafts with the editor-autosave feature.
GHSA-m7cc-6vhg-39wr
Moodle improper access control
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-48rq-vj58-2mh6 Moodle creates a MoodleMobile web-service token with an infinite lifetime | 0% Низкий | больше 3 лет назад | |
| GHSA-8rc7-4qfv-4484 Moodle does not properly restrict file access | 0% Низкий | больше 3 лет назад | |
| GHSA-f9m9-494r-w36p Moodle allows bypass of intended access restrictions | 0% Низкий | больше 3 лет назад | |
| GHSA-2vhr-4mhq-m35c Moodle does not properly restrict access | 0% Низкий | больше 3 лет назад | |
| GHSA-6xpm-q8x9-j3rw Moodle allows attackers to bypass intended access restrictions | CVSS3: 4.3 | 0% Низкий | больше 3 лет назад |
| GHSA-fc5p-vj3h-x7g4 Moodle allows attackers to obtain sensitive information | 0% Низкий | больше 3 лет назад | |
| GHSA-j465-7mp6-3xg3 Moodle places a session key in a URL | 0% Низкий | больше 3 лет назад | |
| GHSA-2jcw-r79x-4r5v Moodle does not set the RISK_XSS bit for graders | 0% Низкий | больше 3 лет назад | |
| GHSA-xfgq-37vh-892j Atto in Moodle 2.8.x before 2.8.9 and 2.9.x before 2.9.3 allows remote attackers to cause a denial of service (disk consumption) by leveraging the guest role and entering drafts with the editor-autosave feature. | CVSS3: 6.8 | 1% Низкий | больше 3 лет назад |
| GHSA-m7cc-6vhg-39wr Moodle improper access control | CVSS3: 4.3 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу