Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 470
CVE-2011-4308
mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, ...
CVE-2011-4307
Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the section parameter.
CVE-2011-4307
Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php ...
CVE-2011-4306
Cross-site scripting (XSS) vulnerability in course/editsection.html in Moodle 1.9.x before 1.9.14 allows remote authenticated users to inject arbitrary web script or HTML via crafted data.
CVE-2011-4306
Cross-site scripting (XSS) vulnerability in course/editsection.html in ...
CVE-2011-4305
message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authenticated users to cause a denial of service (infinite request loop) via a URL that specifies a zero wait time for message refreshing.
CVE-2011-4305
message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authen ...
CVE-2011-4304
The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote authenticated users to discover the name of any user via a beep operation.
CVE-2011-4304
The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2 ...
CVE-2011-4303
lib/db/upgrade.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not set the correct registration_hubs.secret value during installation, which allows remote attackers to bypass intended access restrictions by leveraging the hubs feature.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2011-4308 mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, ... | CVSS2: 4 | 0% Низкий | почти 13 лет назад |
 | CVE-2011-4307 Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the section parameter. | CVSS2: 4.3 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4307 Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php ... | CVSS2: 4.3 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4306 Cross-site scripting (XSS) vulnerability in course/editsection.html in Moodle 1.9.x before 1.9.14 allows remote authenticated users to inject arbitrary web script or HTML via crafted data. | CVSS2: 4.3 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4306 Cross-site scripting (XSS) vulnerability in course/editsection.html in ... | CVSS2: 4.3 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4305 message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authenticated users to cause a denial of service (infinite request loop) via a URL that specifies a zero wait time for message refreshing. | CVSS2: 4 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4305 message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authen ... | CVSS2: 4 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4304 The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote authenticated users to discover the name of any user via a beep operation. | CVSS2: 4 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4304 The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2 ... | CVSS2: 4 | 0% Низкий | почти 13 лет назад |
| CVE-2011-4303 lib/db/upgrade.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not set the correct registration_hubs.secret value during installation, which allows remote attackers to bypass intended access restrictions by leveraging the hubs feature. | CVSS2: 4.3 | 0% Низкий | почти 13 лет назад |
Уязвимостей на страницу