Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 470
GHSA-jqgr-gh62-jf53
Moodle Stored Cross-site Scripting and page denial of service
CVE-2022-40316
The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.
CVE-2022-40316
The H5P activity attempts report did not filter by groups, which in se ...
CVE-2022-40315
A limited SQL injection risk was identified in the "browse list of users" site administration page.
CVE-2022-40315
A limited SQL injection risk was identified in the "browse list of use ...
CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified.
CVE-2022-40314
A remote code execution risk when restoring backup files originating f ...
CVE-2022-40313
Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load.
CVE-2022-40313
Recursive rendering of Mustache template helpers containing user input ...
CVE-2022-40313
Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-jqgr-gh62-jf53 Moodle Stored Cross-site Scripting and page denial of service | CVSS3: 7.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2022-40316 The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to. | CVSS3: 4.3 | 0% Низкий | больше 2 лет назад |
| CVE-2022-40316 The H5P activity attempts report did not filter by groups, which in se ... | CVSS3: 4.3 | 0% Низкий | больше 2 лет назад |
| CVE-2022-40315 A limited SQL injection risk was identified in the "browse list of users" site administration page. | CVSS3: 9.8 | 0% Низкий | больше 2 лет назад |
| CVE-2022-40315 A limited SQL injection risk was identified in the "browse list of use ... | CVSS3: 9.8 | 0% Низкий | больше 2 лет назад |
| CVE-2022-40314 A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified. | CVSS3: 9.8 | 11% Средний | больше 2 лет назад |
| CVE-2022-40314 A remote code execution risk when restoring backup files originating f ... | CVSS3: 9.8 | 11% Средний | больше 2 лет назад |
| CVE-2022-40313 Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load. | CVSS3: 7.1 | 0% Низкий | больше 2 лет назад |
| CVE-2022-40313 Recursive rendering of Mustache template helpers containing user input ... | CVSS3: 7.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2022-40313 Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load. | CVSS3: 7.1 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу