Moodle — система управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle

Вендор: moodle

График релизов

Недавние уязвимости Moodle

Количество 2 647

CVE-2025-26533

12 месяцев назад

An SQL injection risk was identified in the module list filter within course search.

CVSS3: 8.1

EPSS: Низкий

CVE-2025-26533

12 месяцев назад

An SQL injection risk was identified in the module list filter within ...

CVSS3: 8.1

EPSS: Низкий

CVE-2025-26533

12 месяцев назад

An SQL injection risk was identified in the module list filter within course search.

CVSS3: 8.1

EPSS: Низкий

CVE-2025-26532

12 месяцев назад

Additional checks were required to ensure trusttext is applied (when enabled) to glossary entries being restored.

CVSS3: 3.1

EPSS: Низкий

CVE-2025-26532

12 месяцев назад

Additional checks were required to ensure trusttext is applied (when e ...

CVSS3: 3.1

EPSS: Низкий

CVE-2025-26531

12 месяцев назад

Insufficient capability checks made it possible to disable badges a user does not have permission to access.

CVSS3: 3.1

EPSS: Низкий

CVE-2025-26531

12 месяцев назад

Insufficient capability checks made it possible to disable badges a us ...

CVSS3: 3.1

EPSS: Низкий

CVE-2025-26530

12 месяцев назад

The question bank filter required additional sanitizing to prevent a reflected XSS risk.

CVSS3: 8.3

EPSS: Низкий

CVE-2025-26530

12 месяцев назад

The question bank filter required additional sanitizing to prevent a r ...

CVSS3: 8.3

EPSS: Низкий

CVE-2025-26529

12 месяцев назад

Description information displayed in the site administration live log required additional sanitizing to prevent a stored XSS risk.

CVSS3: 8.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2025-26533 An SQL injection risk was identified in the module list filter within course search.	CVSS3: 8.1	0% Низкий	12 месяцев назад
CVE-2025-26533 An SQL injection risk was identified in the module list filter within ...	CVSS3: 8.1	0% Низкий	12 месяцев назад
CVE-2025-26533 An SQL injection risk was identified in the module list filter within course search.	CVSS3: 8.1	0% Низкий	12 месяцев назад
CVE-2025-26532 Additional checks were required to ensure trusttext is applied (when enabled) to glossary entries being restored.	CVSS3: 3.1	0% Низкий	12 месяцев назад
CVE-2025-26532 Additional checks were required to ensure trusttext is applied (when e ...	CVSS3: 3.1	0% Низкий	12 месяцев назад
CVE-2025-26531 Insufficient capability checks made it possible to disable badges a user does not have permission to access.	CVSS3: 3.1	0% Низкий	12 месяцев назад
CVE-2025-26531 Insufficient capability checks made it possible to disable badges a us ...	CVSS3: 3.1	0% Низкий	12 месяцев назад
CVE-2025-26530 The question bank filter required additional sanitizing to prevent a reflected XSS risk.	CVSS3: 8.3	0% Низкий	12 месяцев назад
CVE-2025-26530 The question bank filter required additional sanitizing to prevent a r ...	CVSS3: 8.3	0% Низкий	12 месяцев назад
CVE-2025-26529 Description information displayed in the site administration live log required additional sanitizing to prevent a stored XSS risk.	CVSS3: 8.3	0% Низкий	12 месяцев назад

Уязвимостей на страницу