Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
CVE-2018-1045
In Moodle 3.x, there is XSS via a calendar event name.
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students ...
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access.
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details a ...
CVE-2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
CVE-2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page i ...
CVE-2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2018-1045 In Moodle 3.x, there is XSS via a calendar event name. | CVSS3: 5.4 | 0% Низкий | около 8 лет назад |
 | CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students. | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
| CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students ... | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
| CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students. | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access. | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details a ... | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12156 Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback. | CVSS3: 6.1 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12156 Moodle 3.x has XSS in the contact form on the "non-respondents" page i ... | CVSS3: 6.1 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12156 Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback. | CVSS3: 6.1 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access. | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
Уязвимостей на страницу