Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 646
GHSA-m367-445c-2xqr
Moodle has an authenticated remote code execution risk in the Moodle LMS EQUELLA repository
GHSA-88xj-97gf-7wpq
Moodle has a CSRF risk in user tours manager that allows tour duplication
GHSA-pj96-xh2w-fgqx
Moodle has an IDOR in messaging web service which allows access to some user details
GHSA-c8v6-vxhf-wcrr
Moodle has an authenticated remote code execution risk in the Moodle LMS Dropbox repository
GHSA-m8qh-hx4c-h9hr
Moodle has a CSRF risk in Brickfield tool's analysis request action
GHSA-hxgg-4qww-85ph
Moodle has reflected Cross-site Scripting risk in policy tool
GHSA-chmf-m33p-ph8m
Moodle allows IDOR in RSS block, which allows access to additional RSS feeds
GHSA-8m7c-hm88-2p97
Moodle shows hidden grades to users without permission on some grade reports
GHSA-x45j-jq9q-gf3q
Moodle makes some user data available before completing second factor with MFA enabled
GHSA-57p3-67r2-vwm7
A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed two-factor authentication (2FA).
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-m367-445c-2xqr Moodle has an authenticated remote code execution risk in the Moodle LMS EQUELLA repository | CVSS3: 8.8 | 1% Низкий | 10 месяцев назад |
| GHSA-88xj-97gf-7wpq Moodle has a CSRF risk in user tours manager that allows tour duplication | CVSS3: 3.5 | 0% Низкий | 10 месяцев назад |
| GHSA-pj96-xh2w-fgqx Moodle has an IDOR in messaging web service which allows access to some user details | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| GHSA-c8v6-vxhf-wcrr Moodle has an authenticated remote code execution risk in the Moodle LMS Dropbox repository | CVSS3: 8.8 | 1% Низкий | 10 месяцев назад |
| GHSA-m8qh-hx4c-h9hr Moodle has a CSRF risk in Brickfield tool's analysis request action | 0% Низкий | 10 месяцев назад | |
| GHSA-hxgg-4qww-85ph Moodle has reflected Cross-site Scripting risk in policy tool | CVSS3: 5.4 | 0% Низкий | 10 месяцев назад |
| GHSA-chmf-m33p-ph8m Moodle allows IDOR in RSS block, which allows access to additional RSS feeds | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| GHSA-8m7c-hm88-2p97 Moodle shows hidden grades to users without permission on some grade reports | CVSS3: 5.3 | 0% Низкий | 10 месяцев назад |
| GHSA-x45j-jq9q-gf3q Moodle makes some user data available before completing second factor with MFA enabled | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| GHSA-57p3-67r2-vwm7 A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed two-factor authentication (2FA). | CVSS3: 7.1 | 0% Низкий | 10 месяцев назад |
Уязвимостей на страницу