Moodle — система управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle

Вендор: moodle

График релизов

Недавние уязвимости Moodle

Количество 2 470

CVE-2021-36392

больше 2 лет назад

In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses.

CVSS3: 9.8

EPSS: Низкий

CVE-2021-36392

больше 2 лет назад

In Moodle, an SQL injection risk was identified in the library fetchin ...

CVSS3: 9.8

EPSS: Низкий

CVE-2021-36396

больше 2 лет назад

In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk.

CVSS3: 7.5

EPSS: Низкий

CVE-2021-36395

больше 2 лет назад

In Moodle, the file repository's URL parsing required additional recursion handling to mitigate the risk of recursion denial of service.

CVSS3: 7.5

EPSS: Низкий

CVE-2021-36392

больше 2 лет назад

In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses.

CVSS3: 9.8

EPSS: Низкий

CVE-2021-36394

больше 2 лет назад

In Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin.

CVSS3: 9.8

EPSS: Средний

CVE-2021-36393

больше 2 лет назад

In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses.

CVSS3: 9.8

EPSS: Средний

GHSA-grmj-gpwm-98ww

больше 2 лет назад

Moodle Cross-site Scripting vulnerability

CVSS3: 6.1

EPSS: Низкий

GHSA-32jc-9p58-p82x

больше 2 лет назад

Moodle Improper Access Control vulnerability

CVSS3: 8.2

EPSS: Низкий

GHSA-97qf-pq7x-964m

больше 2 лет назад

Moodle Cross-site Scripting vulnerability

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2021-36392 In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses.	CVSS3: 9.8	0% Низкий	больше 2 лет назад
CVE-2021-36392 In Moodle, an SQL injection risk was identified in the library fetchin ...	CVSS3: 9.8	0% Низкий	больше 2 лет назад
CVE-2021-36396 In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk.	CVSS3: 7.5	1% Низкий	больше 2 лет назад
CVE-2021-36395 In Moodle, the file repository's URL parsing required additional recursion handling to mitigate the risk of recursion denial of service.	CVSS3: 7.5	0% Низкий	больше 2 лет назад
CVE-2021-36392 In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses.	CVSS3: 9.8	0% Низкий	больше 2 лет назад
CVE-2021-36394 In Moodle, a remote code execution risk was identified in the Shibboleth authentication plugin.	CVSS3: 9.8	20% Средний	больше 2 лет назад
CVE-2021-36393 In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses.	CVSS3: 9.8	26% Средний	больше 2 лет назад
GHSA-grmj-gpwm-98ww Moodle Cross-site Scripting vulnerability	CVSS3: 6.1	0% Низкий	больше 2 лет назад
GHSA-32jc-9p58-p82x Moodle Improper Access Control vulnerability	CVSS3: 8.2	0% Низкий	больше 2 лет назад
GHSA-97qf-pq7x-964m Moodle Cross-site Scripting vulnerability	CVSS3: 6.1	0% Низкий	больше 2 лет назад

Уязвимостей на страницу