Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
CVE-2012-0801
lib/formslib.php in Moodle 2.1.x before 2.1.4 and 2.2.x before 2.2.1 does not properly handle multiple instances of a form element, which has unspecified impact and remote attack vectors.
CVE-2012-0801
lib/formslib.php in Moodle 2.1.x before 2.1.4 and 2.2.x before 2.2.1 d ...
CVE-2012-0800
The form-autocompletion functionality in Moodle 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 makes it easier for physically proximate attackers to discover passwords by reading the contents of a non-password field, as demonstrated by accessing a create-groups page with Safari on an iPad device.
CVE-2012-0800
The form-autocompletion functionality in Moodle 2.0.x before 2.0.7, 2. ...
CVE-2012-0799
Moodle 2.0.x before 2.0.7 and 2.1.x before 2.1.4, when an anonymous front-page forum is enabled, allows remote attackers to obtain session keys for their sessions by visiting the front page.
CVE-2012-0799
Moodle 2.0.x before 2.0.7 and 2.1.x before 2.1.4, when an anonymous fr ...
CVE-2012-0798
The self-enrolment functionality in Moodle 2.1.x before 2.1.4 and 2.2.x before 2.2.1 allows remote authenticated users to obtain the manager role by leveraging the teacher role.
CVE-2012-0798
The self-enrolment functionality in Moodle 2.1.x before 2.1.4 and 2.2. ...
CVE-2012-0797
The webservices functionality in Moodle 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 allows remote authenticated users to bypass the deleted status and continue using a server via a token.
CVE-2012-0797
The webservices functionality in Moodle 2.0.x before 2.0.7, 2.1.x befo ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2012-0801 lib/formslib.php in Moodle 2.1.x before 2.1.4 and 2.2.x before 2.2.1 does not properly handle multiple instances of a form element, which has unspecified impact and remote attack vectors. | CVSS2: 7.5 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0801 lib/formslib.php in Moodle 2.1.x before 2.1.4 and 2.2.x before 2.2.1 d ... | CVSS2: 7.5 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0800 The form-autocompletion functionality in Moodle 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 makes it easier for physically proximate attackers to discover passwords by reading the contents of a non-password field, as demonstrated by accessing a create-groups page with Safari on an iPad device. | CVSS2: 2.1 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0800 The form-autocompletion functionality in Moodle 2.0.x before 2.0.7, 2. ... | CVSS2: 2.1 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0799 Moodle 2.0.x before 2.0.7 and 2.1.x before 2.1.4, when an anonymous front-page forum is enabled, allows remote attackers to obtain session keys for their sessions by visiting the front page. | CVSS2: 4.3 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0799 Moodle 2.0.x before 2.0.7 and 2.1.x before 2.1.4, when an anonymous fr ... | CVSS2: 4.3 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0798 The self-enrolment functionality in Moodle 2.1.x before 2.1.4 and 2.2.x before 2.2.1 allows remote authenticated users to obtain the manager role by leveraging the teacher role. | CVSS2: 5.5 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0798 The self-enrolment functionality in Moodle 2.1.x before 2.1.4 and 2.2. ... | CVSS2: 5.5 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0797 The webservices functionality in Moodle 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 allows remote authenticated users to bypass the deleted status and continue using a server via a token. | CVSS2: 5.5 | 0% Низкий | больше 13 лет назад |
| CVE-2012-0797 The webservices functionality in Moodle 2.0.x before 2.0.7, 2.1.x befo ... | CVSS2: 5.5 | 0% Низкий | больше 13 лет назад |
Уязвимостей на страницу