Moodle — система управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle

Вендор: moodle

График релизов

Недавние уязвимости Moodle

Количество 2 541

CVE-2005-3648

почти 20 лет назад

Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.

CVSS2: 7.5

EPSS: Низкий

CVE-2005-3649

почти 20 лет назад

jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users to other sites via the jump parameter.

CVSS2: 2.6

EPSS: Низкий

CVE-2005-3648

почти 20 лет назад

Multiple SQL injection vulnerabilities in the get_record function in d ...

CVSS2: 7.5

EPSS: Низкий

CVE-2005-3649

почти 20 лет назад

jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users t ...

CVSS2: 2.6

EPSS: Низкий

CVE-2005-3649

почти 20 лет назад

jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users to other sites via the jump parameter.

CVSS2: 2.6

EPSS: Низкий

CVE-2005-3648

почти 20 лет назад

CVSS2: 7.5

EPSS: Низкий

CVE-2005-2247

больше 20 лет назад

Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown impact and attack vectors.

CVSS2: 10

EPSS: Низкий

CVE-2005-2247

больше 20 лет назад

Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown i ...

CVSS2: 10

EPSS: Низкий

CVE-2005-2247

больше 20 лет назад

Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown impact and attack vectors.

CVSS2: 10

EPSS: Низкий

CVE-2004-1424

почти 21 год назад

Cross-site scripting (XSS) vulnerability in view.php in Moodle 1.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.

CVSS2: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2005-3648 Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.	CVSS2: 7.5	1% Низкий	почти 20 лет назад
CVE-2005-3649 jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users to other sites via the jump parameter.	CVSS2: 2.6	8% Низкий	почти 20 лет назад
CVE-2005-3648 Multiple SQL injection vulnerabilities in the get_record function in d ...	CVSS2: 7.5	1% Низкий	почти 20 лет назад
CVE-2005-3649 jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users t ...	CVSS2: 2.6	8% Низкий	почти 20 лет назад
CVE-2005-3649 jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users to other sites via the jump parameter.	CVSS2: 2.6	8% Низкий	почти 20 лет назад
CVE-2005-3648 Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.	CVSS2: 7.5	1% Низкий	почти 20 лет назад
CVE-2005-2247 Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown impact and attack vectors.	CVSS2: 10	0% Низкий	больше 20 лет назад
CVE-2005-2247 Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown i ...	CVSS2: 10	0% Низкий	больше 20 лет назад
CVE-2005-2247 Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown impact and attack vectors.	CVSS2: 10	0% Низкий	больше 20 лет назад
CVE-2004-1424 Cross-site scripting (XSS) vulnerability in view.php in Moodle 1.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.	CVSS2: 4.3	1% Низкий	почти 21 год назад

Уязвимостей на страницу