Moodle — система управления образовательными электронными курсами

Moodle cross-site scripting (XSS) vulnerability

Moodle cross-site scripting (XSS) vulnerability

Moodle does not properly restrict file access

Moodle's time-validation implementation allows bypassing intended restrictions

Moodle cross-site request forgery (CSRF) vulnerability

Moodle does not check for the moodle/course:viewhiddencourses capability

Moodle attackers to modify grade metadata

Moodle multiple cross-site request forgery (CSRF) vulnerabilities

Moodle allows attackers to modify the visibility of a badge

Moodle creates a MoodleMobile web-service token with an infinite lifetime