Moodle — система управления образовательными электронными курсами

Релизный цикл, информация об уязвимостях

Продукт: Moodle

Вендор: moodle

График релизов

Недавние уязвимости Moodle

Количество 2 647

CVE-2022-2986

больше 3 лет назад

Enabling and disabling installed H5P libraries did not include the nec ...

CVSS3: 8.8

EPSS: Низкий

CVE-2022-2986

больше 3 лет назад

Enabling and disabling installed H5P libraries did not include the necessary token to prevent a CSRF risk.

CVSS3: 8.8

EPSS: Низкий

GHSA-jqgr-gh62-jf53

больше 3 лет назад

Moodle Stored Cross-site Scripting and page denial of service

CVSS3: 7.1

EPSS: Низкий

GHSA-mqw9-3cjm-xwp3

больше 3 лет назад

Moodle Minor SQL injection risk in admin user browsing

CVSS3: 9.8

EPSS: Низкий

GHSA-2hmm-q272-xmhf

больше 3 лет назад

Moodle remote code execution

CVSS3: 9.8

EPSS: Низкий

GHSA-385f-vgq7-8hhx

больше 3 лет назад

Moodle No groups filtering in H5P activity attempts report

CVSS3: 4.3

EPSS: Низкий

CVE-2022-40316

больше 3 лет назад

The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.

CVSS3: 4.3

EPSS: Низкий

CVE-2022-40316

больше 3 лет назад

The H5P activity attempts report did not filter by groups, which in se ...

CVSS3: 4.3

EPSS: Низкий

CVE-2022-40315

больше 3 лет назад

A limited SQL injection risk was identified in the "browse list of users" site administration page.

CVSS3: 9.8

EPSS: Низкий

CVE-2022-40315

больше 3 лет назад

A limited SQL injection risk was identified in the "browse list of use ...

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2022-2986 Enabling and disabling installed H5P libraries did not include the nec ...	CVSS3: 8.8	0% Низкий	больше 3 лет назад
CVE-2022-2986 Enabling and disabling installed H5P libraries did not include the necessary token to prevent a CSRF risk.	CVSS3: 8.8	0% Низкий	больше 3 лет назад
GHSA-jqgr-gh62-jf53 Moodle Stored Cross-site Scripting and page denial of service	CVSS3: 7.1	0% Низкий	больше 3 лет назад
GHSA-mqw9-3cjm-xwp3 Moodle Minor SQL injection risk in admin user browsing	CVSS3: 9.8	0% Низкий	больше 3 лет назад
GHSA-2hmm-q272-xmhf Moodle remote code execution	CVSS3: 9.8	8% Низкий	больше 3 лет назад
GHSA-385f-vgq7-8hhx Moodle No groups filtering in H5P activity attempts report	CVSS3: 4.3	0% Низкий	больше 3 лет назад
CVE-2022-40316 The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.	CVSS3: 4.3	0% Низкий	больше 3 лет назад
CVE-2022-40316 The H5P activity attempts report did not filter by groups, which in se ...	CVSS3: 4.3	0% Низкий	больше 3 лет назад
CVE-2022-40315 A limited SQL injection risk was identified in the "browse list of users" site administration page.	CVSS3: 9.8	0% Низкий	больше 3 лет назад
CVE-2022-40315 A limited SQL injection risk was identified in the "browse list of use ...	CVSS3: 9.8	0% Низкий	больше 3 лет назад

Уязвимостей на страницу