Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 541
CVE-2024-43440
A flaw was found in moodle. A local file may include risks when restor ...
CVE-2024-43438
A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned by the report.
CVE-2024-43438
A flaw was found in Feedback. Bulk messaging in the activity's non-res ...
CVE-2024-43436
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators.
CVE-2024-43436
A SQL injection risk flaw was found in the XMLDB editor tool available ...
CVE-2024-43434
The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check, leading to a CSRF vulnerability.
CVE-2024-43434
The bulk message sending feature in Moodle's Feedback module's non-res ...
CVE-2024-43431
A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access.
CVE-2024-43431
A vulnerability was found in Moodle. Insufficient capability checks ma ...
CVE-2024-43428
To address a cache poisoning risk in Moodle, additional validation for local storage was required.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2024-43440 A flaw was found in moodle. A local file may include risks when restor ... | CVSS3: 7.5 | 0% Низкий | 12 месяцев назад |
 | CVE-2024-43438 A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned by the report. | CVSS3: 7.5 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43438 A flaw was found in Feedback. Bulk messaging in the activity's non-res ... | CVSS3: 7.5 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43436 A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. | CVSS3: 7.2 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43436 A SQL injection risk flaw was found in the XMLDB editor tool available ... | CVSS3: 7.2 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43434 The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check, leading to a CSRF vulnerability. | CVSS3: 8.1 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43434 The bulk message sending feature in Moodle's Feedback module's non-res ... | CVSS3: 8.1 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43431 A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access. | CVSS3: 7.5 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43431 A vulnerability was found in Moodle. Insufficient capability checks ma ... | CVSS3: 7.5 | 0% Низкий | 12 месяцев назад |
| CVE-2024-43428 To address a cache poisoning risk in Moodle, additional validation for local storage was required. | CVSS3: 7.7 | 0% Низкий | 12 месяцев назад |
Уязвимостей на страницу