Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 541
CVE-2016-8642
In Moodle 2.x and 3.x, the question engine allows access to files that should not be available.
CVE-2016-8642
In Moodle 2.x and 3.x, the question engine allows access to files that ...
CVE-2016-7038
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.
CVE-2016-7038
In Moodle 2.x and 3.x, web service tokens are not invalidated when the ...
CVE-2016-5014
In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course.
CVE-2016-5014
In Moodle 2.x and 3.x, an unenrolled user still receives event monitor ...
CVE-2016-5013
In Moodle 2.x and 3.x, text injection can occur in email headers, potentially leading to outbound spam.
CVE-2016-5013
In Moodle 2.x and 3.x, text injection can occur in email headers, pote ...
CVE-2016-5012
In Moodle 3.x, glossary search displays entries without checking user permissions to view them.
CVE-2016-5012
In Moodle 3.x, glossary search displays entries without checking user ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2016-8642 In Moodle 2.x and 3.x, the question engine allows access to files that should not be available. | CVSS3: 5.3 | 0% Низкий | почти 9 лет назад |
| CVE-2016-8642 In Moodle 2.x and 3.x, the question engine allows access to files that ... | CVSS3: 5.3 | 0% Низкий | почти 9 лет назад |
| CVE-2016-7038 In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed. | CVSS3: 7.3 | 0% Низкий | почти 9 лет назад |
| CVE-2016-7038 In Moodle 2.x and 3.x, web service tokens are not invalidated when the ... | CVSS3: 7.3 | 0% Низкий | почти 9 лет назад |
| CVE-2016-5014 In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course. | CVSS3: 5.4 | 0% Низкий | почти 9 лет назад |
| CVE-2016-5014 In Moodle 2.x and 3.x, an unenrolled user still receives event monitor ... | CVSS3: 5.4 | 0% Низкий | почти 9 лет назад |
| CVE-2016-5013 In Moodle 2.x and 3.x, text injection can occur in email headers, potentially leading to outbound spam. | CVSS3: 5.4 | 0% Низкий | почти 9 лет назад |
| CVE-2016-5013 In Moodle 2.x and 3.x, text injection can occur in email headers, pote ... | CVSS3: 5.4 | 0% Низкий | почти 9 лет назад |
| CVE-2016-5012 In Moodle 3.x, glossary search displays entries without checking user permissions to view them. | CVSS3: 5.3 | 0% Низкий | почти 9 лет назад |
| CVE-2016-5012 In Moodle 3.x, glossary search displays entries without checking user ... | CVSS3: 5.3 | 0% Низкий | почти 9 лет назад |
Уязвимостей на страницу