Moodle — система управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle

Вендор: moodle

График релизов

Недавние уязвимости Moodle

Количество 2 470

GHSA-qc86-vgf2-6fq6

больше 2 лет назад

Moodle SQL Injection vulnerability

CVSS3: 9.8

EPSS: Низкий

GHSA-2563-fp9c-mgm8

больше 2 лет назад

Moodle Session Fixation vulnerability

CVSS3: 9.8

EPSS: Средний

CVE-2021-36396

больше 2 лет назад

In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk.

CVSS3: 7.5

EPSS: Низкий

CVE-2021-36396

больше 2 лет назад

In Moodle, insufficient redirect handling made it possible to blindly ...

CVSS3: 7.5

EPSS: Низкий

CVE-2021-36395

больше 2 лет назад

In Moodle, the file repository's URL parsing required additional recursion handling to mitigate the risk of recursion denial of service.

CVSS3: 7.5

EPSS: Низкий

CVE-2021-36395

больше 2 лет назад

In Moodle, the file repository's URL parsing required additional recur ...

CVSS3: 7.5

EPSS: Низкий

CVE-2021-36394

больше 2 лет назад

In Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin.

CVSS3: 9.8

EPSS: Средний

CVE-2021-36394

больше 2 лет назад

In Moodle, a remote code execution risk was identified in the Shibbole ...

CVSS3: 9.8

EPSS: Средний

CVE-2021-36393

больше 2 лет назад

In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses.

CVSS3: 9.8

EPSS: Средний

CVE-2021-36393

больше 2 лет назад

In Moodle, an SQL injection risk was identified in the library fetchin ...

CVSS3: 9.8

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
GHSA-qc86-vgf2-6fq6 Moodle SQL Injection vulnerability	CVSS3: 9.8	0% Низкий	больше 2 лет назад
GHSA-2563-fp9c-mgm8 Moodle Session Fixation vulnerability	CVSS3: 9.8	20% Средний	больше 2 лет назад
CVE-2021-36396 In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk.	CVSS3: 7.5	1% Низкий	больше 2 лет назад
CVE-2021-36396 In Moodle, insufficient redirect handling made it possible to blindly ...	CVSS3: 7.5	1% Низкий	больше 2 лет назад
CVE-2021-36395 In Moodle, the file repository's URL parsing required additional recursion handling to mitigate the risk of recursion denial of service.	CVSS3: 7.5	0% Низкий	больше 2 лет назад
CVE-2021-36395 In Moodle, the file repository's URL parsing required additional recur ...	CVSS3: 7.5	0% Низкий	больше 2 лет назад
CVE-2021-36394 In Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin.	CVSS3: 9.8	20% Средний	больше 2 лет назад
CVE-2021-36394 In Moodle, a remote code execution risk was identified in the Shibbole ...	CVSS3: 9.8	20% Средний	больше 2 лет назад
CVE-2021-36393 In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses.	CVSS3: 9.8	26% Средний	больше 2 лет назад
CVE-2021-36393 In Moodle, an SQL injection risk was identified in the library fetchin ...	CVSS3: 9.8	26% Средний	больше 2 лет назад

Уязвимостей на страницу