Логотип exploitDog
product: "moodle"
Консоль
Логотип exploitDog

exploitDog

product: "moodle"
Moodle

Moodleсистема управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle
Вендор: moodle

График релизов

4.14.24.34.44.55.05.12022202320242025202620272028

Недавние уязвимости Moodle

Количество 2 541

nvd логотип

CVE-2014-3551

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the advanced-grading implementation in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote authenticated users to inject arbitrary web script or HTML via a crafted (1) qualification or (2) rating field in a rubric.

CVSS2: 3.5
EPSS: Низкий
debian логотип

CVE-2014-3551

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the advanced-gr ...

CVSS2: 3.5
EPSS: Низкий
nvd логотип

CVE-2014-3550

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in admin/tool/task/scheduledtasks.php in Moodle 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via vectors that trigger a crafted (1) error or (2) success message for a scheduled task.

CVSS2: 4.3
EPSS: Низкий
debian логотип

CVE-2014-3550

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in admin/tool/task ...

CVSS2: 4.3
EPSS: Низкий
nvd логотип

CVE-2014-3549

больше 11 лет назад

Cross-site scripting (XSS) vulnerability in the get_description function in lib/classes/event/user_login_failed.php in Moodle 2.7.x before 2.7.1 allows remote attackers to inject arbitrary web script or HTML via a crafted username that is improperly handled during the logging of an invalid login attempt.

CVSS2: 4.3
EPSS: Низкий
debian логотип

CVE-2014-3549

больше 11 лет назад

Cross-site scripting (XSS) vulnerability in the get_description functi ...

CVSS2: 4.3
EPSS: Низкий
nvd логотип

CVE-2014-3548

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via vectors that trigger an AJAX exception dialog.

CVSS2: 4.3
EPSS: Низкий
debian логотип

CVE-2014-3548

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Moodle through ...

CVSS2: 4.3
EPSS: Низкий
nvd логотип

CVE-2014-3547

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in badges/renderer.php in Moodle 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via an external badge.

CVSS2: 4.3
EPSS: Низкий
debian логотип

CVE-2014-3547

больше 11 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in badges/renderer ...

CVSS2: 4.3
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
1
nvd логотип
CVE-2014-3551

Multiple cross-site scripting (XSS) vulnerabilities in the advanced-grading implementation in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote authenticated users to inject arbitrary web script or HTML via a crafted (1) qualification or (2) rating field in a rubric.

CVSS2: 3.5
0%
Низкий
больше 11 лет назад
debian логотип
CVE-2014-3551

Multiple cross-site scripting (XSS) vulnerabilities in the advanced-gr ...

CVSS2: 3.5
0%
Низкий
больше 11 лет назад
nvd логотип
CVE-2014-3550

Multiple cross-site scripting (XSS) vulnerabilities in admin/tool/task/scheduledtasks.php in Moodle 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via vectors that trigger a crafted (1) error or (2) success message for a scheduled task.

CVSS2: 4.3
0%
Низкий
больше 11 лет назад
debian логотип
CVE-2014-3550

Multiple cross-site scripting (XSS) vulnerabilities in admin/tool/task ...

CVSS2: 4.3
0%
Низкий
больше 11 лет назад
nvd логотип
CVE-2014-3549

Cross-site scripting (XSS) vulnerability in the get_description function in lib/classes/event/user_login_failed.php in Moodle 2.7.x before 2.7.1 allows remote attackers to inject arbitrary web script or HTML via a crafted username that is improperly handled during the logging of an invalid login attempt.

CVSS2: 4.3
0%
Низкий
больше 11 лет назад
debian логотип
CVE-2014-3549

Cross-site scripting (XSS) vulnerability in the get_description functi ...

CVSS2: 4.3
0%
Низкий
больше 11 лет назад
nvd логотип
CVE-2014-3548

Multiple cross-site scripting (XSS) vulnerabilities in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via vectors that trigger an AJAX exception dialog.

CVSS2: 4.3
0%
Низкий
больше 11 лет назад
debian логотип
CVE-2014-3548

Multiple cross-site scripting (XSS) vulnerabilities in Moodle through ...

CVSS2: 4.3
0%
Низкий
больше 11 лет назад
nvd логотип
CVE-2014-3547

Multiple cross-site scripting (XSS) vulnerabilities in badges/renderer.php in Moodle 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via an external badge.

CVSS2: 4.3
0%
Низкий
больше 11 лет назад
debian логотип
CVE-2014-3547

Multiple cross-site scripting (XSS) vulnerabilities in badges/renderer ...

CVSS2: 4.3
0%
Низкий
больше 11 лет назад

Уязвимостей на страницу

Поделиться