Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 647
GHSA-57p3-67r2-vwm7
A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed two-factor authentication (2FA).
GHSA-x45j-jq9q-gf3q
Moodle makes some user data available before completing second factor with MFA enabled
GHSA-69m9-rprc-2x7g
Moodle reveals student identities through assignment submissions search on anonymous submissions
CVE-2025-3647
A flaw was discovered in Moodle. Additional checks were required to en ...
CVE-2025-3647
A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve.
CVE-2025-3645
A flaw was found in Moodle. Insufficient capability checks in a messag ...
CVE-2025-3645
A flaw was found in Moodle. Insufficient capability checks in a messaging web service allowed users to view other users' names and online statuses.
CVE-2025-3644
A flaw was found in Moodle. Additional checks were required to prevent ...
CVE-2025-3644
A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify.
CVE-2025-3643
A flaw was found in Moodle. The return URL in the policy tool required ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-57p3-67r2-vwm7 A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed two-factor authentication (2FA). | CVSS3: 7.1 | 0% Низкий | 9 месяцев назад |
| GHSA-x45j-jq9q-gf3q Moodle makes some user data available before completing second factor with MFA enabled | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| GHSA-69m9-rprc-2x7g Moodle reveals student identities through assignment submissions search on anonymous submissions | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| CVE-2025-3647 A flaw was discovered in Moodle. Additional checks were required to en ... | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-3647 A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve. | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| CVE-2025-3645 A flaw was found in Moodle. Insufficient capability checks in a messag ... | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| CVE-2025-3645 A flaw was found in Moodle. Insufficient capability checks in a messaging web service allowed users to view other users' names and online statuses. | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| CVE-2025-3644 A flaw was found in Moodle. Additional checks were required to prevent ... | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| CVE-2025-3644 A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify. | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| CVE-2025-3643 A flaw was found in Moodle. The return URL in the policy tool required ... | CVSS3: 5.4 | 0% Низкий | 9 месяцев назад |
Уязвимостей на страницу