Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 535
GHSA-g88w-v4cq-qgcp
Moodle has an IDOR in badges allows disabling of arbitrary badges
GHSA-cw24-f6fq-7j9v
Moodle allows teachers to evade trusttext config when restoring glossary entries
GHSA-h697-w4ph-7pcx
Moodle has a stored XSS in ddimageortext question type
GHSA-4hmr-39vp-xfrr
Moodle has an arbitrary file read risk through pdfTeX
CVE-2025-26533
An SQL injection risk was identified in the module list filter within course search.
CVE-2025-26533
An SQL injection risk was identified in the module list filter within ...
CVE-2025-26533
An SQL injection risk was identified in the module list filter within course search.
CVE-2025-26532
Additional checks were required to ensure trusttext is applied (when enabled) to glossary entries being restored.
CVE-2025-26532
Additional checks were required to ensure trusttext is applied (when e ...
CVE-2025-26531
Insufficient capability checks made it possible to disable badges a user does not have permission to access.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-g88w-v4cq-qgcp Moodle has an IDOR in badges allows disabling of arbitrary badges | CVSS3: 3.1 | 0% Низкий | 7 месяцев назад |
| GHSA-cw24-f6fq-7j9v Moodle allows teachers to evade trusttext config when restoring glossary entries | CVSS3: 3.1 | 0% Низкий | 7 месяцев назад |
| GHSA-h697-w4ph-7pcx Moodle has a stored XSS in ddimageortext question type | CVSS3: 3.4 | 0% Низкий | 7 месяцев назад |
| GHSA-4hmr-39vp-xfrr Moodle has an arbitrary file read risk through pdfTeX | CVSS3: 8.6 | 0% Низкий | 7 месяцев назад |
 | CVE-2025-26533 An SQL injection risk was identified in the module list filter within course search. | CVSS3: 8.1 | 0% Низкий | 7 месяцев назад |
| CVE-2025-26533 An SQL injection risk was identified in the module list filter within ... | CVSS3: 8.1 | 0% Низкий | 7 месяцев назад |
 | CVE-2025-26533 An SQL injection risk was identified in the module list filter within course search. | CVSS3: 8.1 | 0% Низкий | 7 месяцев назад |
| CVE-2025-26532 Additional checks were required to ensure trusttext is applied (when enabled) to glossary entries being restored. | CVSS3: 3.1 | 0% Низкий | 7 месяцев назад |
| CVE-2025-26532 Additional checks were required to ensure trusttext is applied (when e ... | CVSS3: 3.1 | 0% Низкий | 7 месяцев назад |
| CVE-2025-26531 Insufficient capability checks made it possible to disable badges a user does not have permission to access. | CVSS3: 3.1 | 0% Низкий | 7 месяцев назад |
Уязвимостей на страницу