Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
CVE-2016-3733
The "restore teacher" feature in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to overwrite the course idnumber.
CVE-2016-3731
Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, and 2.8 through 2.8.11 allows remote attackers to obtain the names of hidden forums and forum discussions.
CVE-2016-3729
The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the administrator.
CVE-2017-7298
In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element.
CVE-2017-7298
In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Ad ...
CVE-2017-7298
In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element.
CVE-2017-2645
In Moodle 3.x, XSS can occur via attachments to evidence of prior learning.
CVE-2017-2645
In Moodle 3.x, XSS can occur via attachments to evidence of prior lear ...
CVE-2017-2644
In Moodle 3.x, XSS can occur via evidence of prior learning.
CVE-2017-2644
In Moodle 3.x, XSS can occur via evidence of prior learning.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2016-3733 The "restore teacher" feature in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to overwrite the course idnumber. | CVSS3: 4.3 | 0% Низкий | почти 9 лет назад |
| CVE-2016-3731 Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, and 2.8 through 2.8.11 allows remote attackers to obtain the names of hidden forums and forum discussions. | CVSS3: 5.3 | 0% Низкий | почти 9 лет назад |
| CVE-2016-3729 The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the administrator. | CVSS3: 6.5 | 0% Низкий | почти 9 лет назад |
 | CVE-2017-7298 In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element. | CVSS3: 5.4 | 0% Низкий | почти 9 лет назад |
| CVE-2017-7298 In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Ad ... | CVSS3: 5.4 | 0% Низкий | почти 9 лет назад |
| CVE-2017-7298 In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element. | CVSS3: 5.4 | 0% Низкий | почти 9 лет назад |
| CVE-2017-2645 In Moodle 3.x, XSS can occur via attachments to evidence of prior learning. | CVSS3: 6.1 | 0% Низкий | почти 9 лет назад |
| CVE-2017-2645 In Moodle 3.x, XSS can occur via attachments to evidence of prior lear ... | CVSS3: 6.1 | 0% Низкий | почти 9 лет назад |
| CVE-2017-2644 In Moodle 3.x, XSS can occur via evidence of prior learning. | CVSS3: 6.1 | 0% Низкий | почти 9 лет назад |
| CVE-2017-2644 In Moodle 3.x, XSS can occur via evidence of prior learning. | CVSS3: 6.1 | 0% Низкий | почти 9 лет назад |
Уязвимостей на страницу