Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 541
CVE-2006-4939
backup/backup_scheduled.php in Moodle before 1.6.2 generates trace dat ...
CVE-2006-4938
help.php in Moodle before 1.6.2 does not check the existence of certai ...
CVE-2006-4935
The Database module in Moodle before 1.6.2 does not properly handle up ...
CVE-2006-4936
Moodle before 1.6.2 does not properly validate the module instance id ...
CVE-2006-4940
login/forgot_password.php in Moodle before 1.6.2 allows remote attacke ...
CVE-2006-4942
Moodle before 1.6.2, when the configuration lacks (1) algebra or (2) t ...
CVE-2006-4935
The Database module in Moodle before 1.6.2 does not properly handle uploaded files, which has unspecified impact and remote attack vectors.
CVE-2006-4936
Moodle before 1.6.2 does not properly validate the module instance id when creating a course module object, which has unspecified impact and remote attack vectors.
CVE-2006-4940
login/forgot_password.php in Moodle before 1.6.2 allows remote attackers to obtain sensitive information (e-mail addresses and Moodle account names) via a find action.
CVE-2006-4941
Multiple cross-site scripting (XSS) vulnerabilities in Moodle before 1.6.2 might allow remote attackers to inject arbitrary web script or HTML via (1) the choose parameter in files/index.php and (2) the sub parameter in doc/index.php.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2006-4939 backup/backup_scheduled.php in Moodle before 1.6.2 generates trace dat ... | CVSS2: 5 | 0% Низкий | около 19 лет назад |
| CVE-2006-4938 help.php in Moodle before 1.6.2 does not check the existence of certai ... | CVSS2: 4 | 0% Низкий | около 19 лет назад |
| CVE-2006-4935 The Database module in Moodle before 1.6.2 does not properly handle up ... | CVSS2: 10 | 0% Низкий | около 19 лет назад |
| CVE-2006-4936 Moodle before 1.6.2 does not properly validate the module instance id ... | CVSS2: 10 | 0% Низкий | около 19 лет назад |
| CVE-2006-4940 login/forgot_password.php in Moodle before 1.6.2 allows remote attacke ... | CVSS2: 5 | 0% Низкий | около 19 лет назад |
| CVE-2006-4942 Moodle before 1.6.2, when the configuration lacks (1) algebra or (2) t ... | CVSS2: 4.6 | 1% Низкий | около 19 лет назад |
 | CVE-2006-4935 The Database module in Moodle before 1.6.2 does not properly handle uploaded files, which has unspecified impact and remote attack vectors. | CVSS2: 10 | 0% Низкий | около 19 лет назад |
| CVE-2006-4936 Moodle before 1.6.2 does not properly validate the module instance id when creating a course module object, which has unspecified impact and remote attack vectors. | CVSS2: 10 | 0% Низкий | около 19 лет назад |
| CVE-2006-4940 login/forgot_password.php in Moodle before 1.6.2 allows remote attackers to obtain sensitive information (e-mail addresses and Moodle account names) via a find action. | CVSS2: 5 | 0% Низкий | около 19 лет назад |
| CVE-2006-4941 Multiple cross-site scripting (XSS) vulnerabilities in Moodle before 1.6.2 might allow remote attackers to inject arbitrary web script or HTML via (1) the choose parameter in files/index.php and (2) the sub parameter in doc/index.php. | CVSS2: 4.3 | 0% Низкий | около 19 лет назад |
Уязвимостей на страницу