Moodle — система управления образовательными электронными курсами
Релизный цикл, информация об уязвимостях
График релизов
Количество 2 645
GHSA-69m9-rprc-2x7g
Moodle reveals student identities through assignment submissions search on anonymous submissions
GHSA-57p3-67r2-vwm7
A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed two-factor authentication (2FA).
CVE-2025-3647
A flaw was discovered in Moodle. Additional checks were required to en ...
CVE-2025-3647
A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve.
CVE-2025-3645
A flaw was found in Moodle. Insufficient capability checks in a messag ...
CVE-2025-3645
A flaw was found in Moodle. Insufficient capability checks in a messaging web service allowed users to view other users' names and online statuses.
CVE-2025-3644
A flaw was found in Moodle. Additional checks were required to prevent ...
CVE-2025-3644
A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify.
CVE-2025-3643
A flaw was found in Moodle. The return URL in the policy tool required ...
CVE-2025-3643
A flaw was found in Moodle. The return URL in the policy tool required additional sanitizing to prevent a reflected Cross-site scripting (XSS) risk.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| GHSA-69m9-rprc-2x7g Moodle reveals student identities through assignment submissions search on anonymous submissions | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| GHSA-57p3-67r2-vwm7 A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed two-factor authentication (2FA). | CVSS3: 7.1 | 0% Низкий | 10 месяцев назад |
| CVE-2025-3647 A flaw was discovered in Moodle. Additional checks were required to en ... | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
 | CVE-2025-3647 A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve. | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| CVE-2025-3645 A flaw was found in Moodle. Insufficient capability checks in a messag ... | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| CVE-2025-3645 A flaw was found in Moodle. Insufficient capability checks in a messaging web service allowed users to view other users' names and online statuses. | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| CVE-2025-3644 A flaw was found in Moodle. Additional checks were required to prevent ... | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| CVE-2025-3644 A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify. | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| CVE-2025-3643 A flaw was found in Moodle. The return URL in the policy tool required ... | CVSS3: 5.4 | 0% Низкий | 10 месяцев назад |
| CVE-2025-3643 A flaw was found in Moodle. The return URL in the policy tool required additional sanitizing to prevent a reflected Cross-site scripting (XSS) risk. | CVSS3: 5.4 | 0% Низкий | 10 месяцев назад |
Уязвимостей на страницу