Логотип exploitDog
product: "moodle"
Консоль
Логотип exploitDog

exploitDog

product: "moodle"
Moodle

Moodleсистема управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle
Вендор: moodle

График релизов

4.14.24.34.44.55.02022202320242025202620272028

Недавние уязвимости Moodle

Количество 2 470

nvd логотип

CVE-2009-0501

больше 16 лет назад

Unspecified vulnerability in the Calendar export feature in Moodle 1.8 before 1.8.8 and 1.9 before 1.9.4 allows attackers to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors.

CVSS2: 5
EPSS: Низкий
debian логотип

CVE-2009-0501

больше 16 лет назад

Unspecified vulnerability in the Calendar export feature in Moodle 1.8 ...

CVSS2: 5
EPSS: Низкий
nvd логотип

CVE-2009-0500

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to inject arbitrary web script or HTML via crafted log table information that is not properly handled when it is displayed in a log report.

CVSS2: 4.3
EPSS: Низкий
debian логотип

CVE-2009-0500

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle 1 ...

CVSS2: 4.3
EPSS: Низкий
nvd логотип

CVE-2009-0499

больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

CVSS2: 6.4
EPSS: Низкий
debian логотип

CVE-2009-0499

больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in the forum code in M ...

CVSS2: 6.4
EPSS: Низкий
ubuntu логотип

CVE-2009-0499

больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

CVSS2: 6.4
EPSS: Низкий
ubuntu логотип

CVE-2009-0502

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in blocks/html/block_html.php in Snoopy 1.2.3, as used in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4, allows remote attackers to inject arbitrary web script or HTML via an HTML block, which is not properly handled when the "Login as" feature is used to visit a MyMoodle or Blog page.

CVSS2: 4.3
EPSS: Низкий
ubuntu логотип

CVE-2009-0501

больше 16 лет назад

Unspecified vulnerability in the Calendar export feature in Moodle 1.8 before 1.8.8 and 1.9 before 1.9.4 allows attackers to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors.

CVSS2: 5
EPSS: Низкий
ubuntu логотип

CVE-2009-0500

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to inject arbitrary web script or HTML via crafted log table information that is not properly handled when it is displayed in a log report.

CVSS2: 4.3
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
1
nvd логотип
CVE-2009-0501

Unspecified vulnerability in the Calendar export feature in Moodle 1.8 before 1.8.8 and 1.9 before 1.9.4 allows attackers to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors.

CVSS2: 5
0%
Низкий
больше 16 лет назад
debian логотип
CVE-2009-0501

Unspecified vulnerability in the Calendar export feature in Moodle 1.8 ...

CVSS2: 5
0%
Низкий
больше 16 лет назад
nvd логотип
CVE-2009-0500

Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to inject arbitrary web script or HTML via crafted log table information that is not properly handled when it is displayed in a log report.

CVSS2: 4.3
0%
Низкий
больше 16 лет назад
debian логотип
CVE-2009-0500

Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle 1 ...

CVSS2: 4.3
0%
Низкий
больше 16 лет назад
nvd логотип
CVE-2009-0499

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

CVSS2: 6.4
0%
Низкий
больше 16 лет назад
debian логотип
CVE-2009-0499

Cross-site request forgery (CSRF) vulnerability in the forum code in M ...

CVSS2: 6.4
0%
Низкий
больше 16 лет назад
ubuntu логотип
CVE-2009-0499

Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.

CVSS2: 6.4
0%
Низкий
больше 16 лет назад
ubuntu логотип
CVE-2009-0502

Cross-site scripting (XSS) vulnerability in blocks/html/block_html.php in Snoopy 1.2.3, as used in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4, allows remote attackers to inject arbitrary web script or HTML via an HTML block, which is not properly handled when the "Login as" feature is used to visit a MyMoodle or Blog page.

CVSS2: 4.3
0%
Низкий
больше 16 лет назад
ubuntu логотип
CVE-2009-0501

Unspecified vulnerability in the Calendar export feature in Moodle 1.8 before 1.8.8 and 1.9 before 1.9.4 allows attackers to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors.

CVSS2: 5
0%
Низкий
больше 16 лет назад
ubuntu логотип
CVE-2009-0500

Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to inject arbitrary web script or HTML via crafted log table information that is not properly handled when it is displayed in a log report.

CVSS2: 4.3
0%
Низкий
больше 16 лет назад

Уязвимостей на страницу

Поделиться