Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
CVE-2018-1042
Moodle 3.x has Server Side Request Forgery in the filepicker.
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students ...
CVE-2017-15110
In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access.
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details a ...
CVE-2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
CVE-2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page i ...
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access.
CVE-2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2018-1042 Moodle 3.x has Server Side Request Forgery in the filepicker. | CVSS3: 6.5 | 13% Средний | около 8 лет назад |
 | CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students. | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
| CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students ... | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
| CVE-2017-15110 In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students. | CVSS3: 4.3 | 0% Низкий | около 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access. | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details a ... | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12156 Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback. | CVSS3: 6.1 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12156 Moodle 3.x has XSS in the contact form on the "non-respondents" page i ... | CVSS3: 6.1 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12157 In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access. | CVSS3: 4.3 | 0% Низкий | больше 8 лет назад |
| CVE-2017-12156 Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback. | CVSS3: 6.1 | 0% Низкий | больше 8 лет назад |
Уязвимостей на страницу