Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 541
CVE-2018-1042
Moodle 3.x has Server Side Request Forgery in the filepicker.
CVE-2018-1042
Moodle 3.x has Server Side Request Forgery in the filepicker.
CVE-2018-1045
In Moodle 3.x, there is XSS via a calendar event name.
CVE-2018-1043
In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames.
CVE-2018-1044
In Moodle 3.x, quiz web services allow students to see quiz results when it is prohibited in the settings.
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students ...
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access.
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details a ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2018-1042 Moodle 3.x has Server Side Request Forgery in the filepicker. | CVSS3: 6.5 | 19% Средний | почти 8 лет назад |
 | CVE-2018-1042 Moodle 3.x has Server Side Request Forgery in the filepicker. | CVSS3: 6.5 | 19% Средний | почти 8 лет назад |
| CVE-2018-1045 In Moodle 3.x, there is XSS via a calendar event name. | CVSS3: 5.4 | 0% Низкий | почти 8 лет назад |
| CVE-2018-1043 In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames. | CVSS3: 6.5 | 0% Низкий | почти 8 лет назад |
| CVE-2018-1044 In Moodle 3.x, quiz web services allow students to see quiz results when it is prohibited in the settings. | CVSS3: 4.3 | 0% Низкий | почти 8 лет назад |
 | CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students. | CVSS3: 4.3 | 0% Низкий | почти 8 лет назад |
| CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students ... | CVSS3: 4.3 | 0% Низкий | почти 8 лет назад |
| CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students. | CVSS3: 4.3 | 0% Низкий | почти 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access. | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details a ... | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
Уязвимостей на страницу