Moodle — система управления образовательными электронными курсами

In Moodle, ID numbers displayed in the quiz override screens required additional sanitizing to prevent a stored XSS risk.

Moodle Session Fixation vulnerability

Moodle vulnerable to Uncontrolled Resource Consumption

Moodle SQL Injection vulnerability

Moodle vulnerable to Server-Side Request Forgery

Moodle SQL Injection vulnerability

In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk.

In Moodle, insufficient redirect handling made it possible to blindly ...

In Moodle, the file repository's URL parsing required additional recursion handling to mitigate the risk of recursion denial of service.

In Moodle, the file repository's URL parsing required additional recur ...