Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
GHSA-mx26-62xm-2p83
Moodle vulnerable to site administration SQL injection via XMLDB editor
GHSA-p9cx-f595-h79h
Moodle's IDOR in Feedback non-respondents report allows messaging arbitrary site users
GHSA-2r9m-wg35-rfvc
Moodle vulnerable to cache poisoning via injection into storage
GHSA-qrqv-26gf-xgwh
Moodle LFI vulnerability when restoring malformed block backups
CVE-2024-43440
A flaw was found in moodle. A local file may include risks when restoring block backups.
CVE-2024-43440
A flaw was found in moodle. A local file may include risks when restor ...
CVE-2024-43438
A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned by the report.
CVE-2024-43438
A flaw was found in Feedback. Bulk messaging in the activity's non-res ...
CVE-2024-43436
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators.
CVE-2024-43436
A SQL injection risk flaw was found in the XMLDB editor tool available ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-mx26-62xm-2p83 Moodle vulnerable to site administration SQL injection via XMLDB editor | CVSS3: 7.2 | 0% Низкий | больше 1 года назад |
| GHSA-p9cx-f595-h79h Moodle's IDOR in Feedback non-respondents report allows messaging arbitrary site users | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| GHSA-2r9m-wg35-rfvc Moodle vulnerable to cache poisoning via injection into storage | CVSS3: 7.7 | 0% Низкий | больше 1 года назад |
| GHSA-qrqv-26gf-xgwh Moodle LFI vulnerability when restoring malformed block backups | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
 | CVE-2024-43440 A flaw was found in moodle. A local file may include risks when restoring block backups. | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-43440 A flaw was found in moodle. A local file may include risks when restor ... | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-43438 A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned by the report. | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-43438 A flaw was found in Feedback. Bulk messaging in the activity's non-res ... | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-43436 A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. | CVSS3: 7.2 | 0% Низкий | больше 1 года назад |
| CVE-2024-43436 A SQL injection risk flaw was found in the XMLDB editor tool available ... | CVSS3: 7.2 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу