Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 535
CVE-2011-4291
Moodle 2.0.x before 2.0.3 allows remote authenticated users to cause a denial of service (invalid database records) via a series of crafted ratings operations.
CVE-2011-4309
Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to bypass intended access restrictions and perform global searches by leveraging the guest role and making a direct request to a URL.
CVE-2011-4309
Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attacke ...
CVE-2011-4308
mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, and 2.1.x before 2.1.2 allows remote authenticated users to discover the names of other users via unspecified vectors.
CVE-2011-4308
mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, ...
CVE-2011-4307
Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the section parameter.
CVE-2011-4307
Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php ...
CVE-2011-4306
Cross-site scripting (XSS) vulnerability in course/editsection.html in Moodle 1.9.x before 1.9.14 allows remote authenticated users to inject arbitrary web script or HTML via crafted data.
CVE-2011-4306
Cross-site scripting (XSS) vulnerability in course/editsection.html in ...
CVE-2011-4305
message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authenticated users to cause a denial of service (infinite request loop) via a URL that specifies a zero wait time for message refreshing.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2011-4291 Moodle 2.0.x before 2.0.3 allows remote authenticated users to cause a denial of service (invalid database records) via a series of crafted ratings operations. | CVSS2: 4 | 0% Низкий | около 13 лет назад |
 | CVE-2011-4309 Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to bypass intended access restrictions and perform global searches by leveraging the guest role and making a direct request to a URL. | CVSS2: 5 | 0% Низкий | около 13 лет назад |
| CVE-2011-4309 Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attacke ... | CVSS2: 5 | 0% Низкий | около 13 лет назад |
| CVE-2011-4308 mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, and 2.1.x before 2.1.2 allows remote authenticated users to discover the names of other users via unspecified vectors. | CVSS2: 4 | 0% Низкий | около 13 лет назад |
| CVE-2011-4308 mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, ... | CVSS2: 4 | 0% Низкий | около 13 лет назад |
| CVE-2011-4307 Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the section parameter. | CVSS2: 4.3 | 0% Низкий | около 13 лет назад |
| CVE-2011-4307 Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php ... | CVSS2: 4.3 | 0% Низкий | около 13 лет назад |
| CVE-2011-4306 Cross-site scripting (XSS) vulnerability in course/editsection.html in Moodle 1.9.x before 1.9.14 allows remote authenticated users to inject arbitrary web script or HTML via crafted data. | CVSS2: 4.3 | 0% Низкий | около 13 лет назад |
| CVE-2011-4306 Cross-site scripting (XSS) vulnerability in course/editsection.html in ... | CVSS2: 4.3 | 0% Низкий | около 13 лет назад |
| CVE-2011-4305 message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authenticated users to cause a denial of service (infinite request loop) via a URL that specifies a zero wait time for message refreshing. | CVSS2: 4 | 0% Низкий | около 13 лет назад |
Уязвимостей на страницу