Moodle — система управления образовательными электронными курсами

Moodle multiple cross-site scripting (XSS) vulnerabilities

Moodle allows attackers to bypass the mod/lti:view capability requirement

Moodle multiple cross-site scripting (XSS) vulnerabilities

Moodle does not enforce the moodle/site:accessallgroups capability requirement

Moodle cross-site scripting (XSS) vulnerability

Moodle does not verify group permissions

In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context.

Moodle Unauthenticated Access

In Moodle 2.x and 3.x, non-admin site managers may accidentally edit admins via web services.

Moodle remote code execution via quiz questions