Moodle — система управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle

Вендор: moodle

График релизов

Недавние уязвимости Moodle

Количество 2 541

CVE-2022-40314

около 3 лет назад

A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified.

CVSS3: 9.8

EPSS: Низкий

CVE-2022-40313

около 3 лет назад

Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load.

CVSS3: 7.1

EPSS: Низкий

CVE-2022-40316

около 3 лет назад

The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.

CVSS3: 4.3

EPSS: Низкий

GHSA-wr6q-xv23-rfq9

около 3 лет назад

Moodle Incorrect Authorization

CVSS3: 4.3

EPSS: Низкий

GHSA-92vh-mr2w-j2cr

около 3 лет назад

Moodle Improper Authentication

CVSS3: 4.3

EPSS: Низкий

GHSA-2jxg-mv2m-j4r7

около 3 лет назад

Moodle type juggling vulnerability

CVSS3: 6.5

EPSS: Низкий

GHSA-gp4w-f57r-9rx3

около 3 лет назад

Moodle Exposure of Sensitive Information to an Unauthorized Actor

CVSS3: 4.3

EPSS: Низкий

GHSA-m37g-mwcg-7j7v

около 3 лет назад

Moodle Improper Encoding or Escaping of Output

CVSS3: 4.9

EPSS: Низкий

CVE-2021-40695

около 3 лет назад

It was possible for a student to view their quiz grade before it had been released, using a quiz web service.

CVSS3: 4.3

EPSS: Низкий

CVE-2021-40695

около 3 лет назад

It was possible for a student to view their quiz grade before it had b ...

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2022-40314 A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified.	CVSS3: 9.8	10% Низкий	около 3 лет назад
CVE-2022-40313 Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load.	CVSS3: 7.1	1% Низкий	около 3 лет назад
CVE-2022-40316 The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.	CVSS3: 4.3	0% Низкий	около 3 лет назад
GHSA-wr6q-xv23-rfq9 Moodle Incorrect Authorization	CVSS3: 4.3	0% Низкий	около 3 лет назад
GHSA-92vh-mr2w-j2cr Moodle Improper Authentication	CVSS3: 4.3	0% Низкий	около 3 лет назад
GHSA-2jxg-mv2m-j4r7 Moodle type juggling vulnerability	CVSS3: 6.5	0% Низкий	около 3 лет назад
GHSA-gp4w-f57r-9rx3 Moodle Exposure of Sensitive Information to an Unauthorized Actor	CVSS3: 4.3	0% Низкий	около 3 лет назад
GHSA-m37g-mwcg-7j7v Moodle Improper Encoding or Escaping of Output	CVSS3: 4.9	0% Низкий	около 3 лет назад
CVE-2021-40695 It was possible for a student to view their quiz grade before it had been released, using a quiz web service.	CVSS3: 4.3	0% Низкий	около 3 лет назад
CVE-2021-40695 It was possible for a student to view their quiz grade before it had b ...	CVSS3: 4.3	0% Низкий	около 3 лет назад

Уязвимостей на страницу