Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 470
CVE-2012-5480
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended restrictions on reading other participants' entries via an advanced search.
CVE-2012-5480
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x befor ...
CVE-2012-5479
The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to upload and execute files via a modified Portfolio API callback.
CVE-2012-5479
The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, ...
CVE-2012-5473
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to read activity entries of a different group's users via an advanced search.
CVE-2012-5473
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x befor ...
CVE-2012-5472
lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 allows remote authenticated users to bypass intended access restrictions via a modified value of a frozen form field.
CVE-2012-5472
lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 a ...
CVE-2012-5471
The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging an unattended workstation after a logout.
CVE-2012-5471
The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2012-5480 The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended restrictions on reading other participants' entries via an advanced search. | CVSS2: 6.4 | 0% Низкий | больше 12 лет назад |
| CVE-2012-5480 The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x befor ... | CVSS2: 6.4 | 0% Низкий | больше 12 лет назад |
| CVE-2012-5479 The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to upload and execute files via a modified Portfolio API callback. | CVSS2: 6.5 | 1% Низкий | больше 12 лет назад |
| CVE-2012-5479 The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, ... | CVSS2: 6.5 | 1% Низкий | больше 12 лет назад |
| CVE-2012-5473 The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to read activity entries of a different group's users via an advanced search. | CVSS2: 4 | 0% Низкий | больше 12 лет назад |
| CVE-2012-5473 The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x befor ... | CVSS2: 4 | 0% Низкий | больше 12 лет назад |
| CVE-2012-5472 lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 allows remote authenticated users to bypass intended access restrictions via a modified value of a frozen form field. | CVSS2: 4 | 0% Низкий | больше 12 лет назад |
| CVE-2012-5472 lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 a ... | CVSS2: 4 | 0% Низкий | больше 12 лет назад |
| CVE-2012-5471 The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging an unattended workstation after a logout. | CVSS2: 6.5 | 0% Низкий | больше 12 лет назад |
| CVE-2012-5471 The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x ... | CVSS2: 6.5 | 0% Низкий | больше 12 лет назад |
Уязвимостей на страницу