Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
GHSA-c4cq-v4wp-28hg
Moodle sensitive information disclosure
GHSA-fccf-p8fx-vjj4
Moodle vulnerable to PHP object injection attacks
GHSA-hwjv-mc78-cccj
Moodle multiple cross-site scripting (XSS) vulnerabilities
GHSA-gccq-w3xv-4gqh
Cross-site scripting (XSS) vulnerability in the get_description function in lib/classes/event/user_login_failed.php in Moodle 2.7.x before 2.7.1 allows remote attackers to inject arbitrary web script or HTML via a crafted username that is improperly handled during the logging of an invalid login attempt.
GHSA-xmwv-mqh8-4xgw
Moodle allows remote attackers to read arbitrary files
GHSA-2hh3-jmv8-5fmx
Moodle Does Not Escape Characters In Email Headers
GHSA-cjrf-xg77-chpw
Moodle Incorrect sanitation of attributes in forums
GHSA-2phx-w35g-x9vm
Moodle Weak Password Recovery Mechanism for Forgotten Password
GHSA-c9jp-244j-vh78
Moodle cross-site scripting (XSS) vulnerability
GHSA-27j2-c838-c3qg
Moodle Arbitrary File Read via XML External Entity vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-c4cq-v4wp-28hg Moodle sensitive information disclosure | CVSS3: 5.4 | 0% Низкий | больше 3 лет назад |
| GHSA-fccf-p8fx-vjj4 Moodle vulnerable to PHP object injection attacks | 2% Низкий | больше 3 лет назад | |
| GHSA-hwjv-mc78-cccj Moodle multiple cross-site scripting (XSS) vulnerabilities | 0% Низкий | больше 3 лет назад | |
| GHSA-gccq-w3xv-4gqh Cross-site scripting (XSS) vulnerability in the get_description function in lib/classes/event/user_login_failed.php in Moodle 2.7.x before 2.7.1 allows remote attackers to inject arbitrary web script or HTML via a crafted username that is improperly handled during the logging of an invalid login attempt. | 0% Низкий | больше 3 лет назад | |
| GHSA-xmwv-mqh8-4xgw Moodle allows remote attackers to read arbitrary files | 0% Низкий | больше 3 лет назад | |
| GHSA-2hh3-jmv8-5fmx Moodle Does Not Escape Characters In Email Headers | CVSS3: 5.4 | 0% Низкий | больше 3 лет назад |
| GHSA-cjrf-xg77-chpw Moodle Incorrect sanitation of attributes in forums | CVSS3: 5.3 | 0% Низкий | больше 3 лет назад |
| GHSA-2phx-w35g-x9vm Moodle Weak Password Recovery Mechanism for Forgotten Password | CVSS3: 7.3 | 0% Низкий | больше 3 лет назад |
| GHSA-c9jp-244j-vh78 Moodle cross-site scripting (XSS) vulnerability | 1% Низкий | больше 3 лет назад | |
| GHSA-27j2-c838-c3qg Moodle Arbitrary File Read via XML External Entity vulnerability | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу