exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2 541

CVE-2020-1691

около 3 лет назад

In Moodle 3.8, messages required extra sanitizing before updating the ...

CVSS3: 5.4

EPSS: Низкий

CVE-2020-14322

около 3 лет назад

In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.

CVSS3: 7.5

EPSS: Низкий

CVE-2020-14322

около 3 лет назад

In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.

CVSS3: 7.5

EPSS: Низкий

CVE-2020-14322

около 3 лет назад

In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to l ...

CVSS3: 7.5

EPSS: Низкий

CVE-2020-14321

около 3 лет назад

In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.

CVSS3: 8.8

EPSS: Средний

CVE-2020-14321

около 3 лет назад

In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.

CVSS3: 8.8

EPSS: Средний

CVE-2020-14321

около 3 лет назад

In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course ...

CVSS3: 8.8

EPSS: Средний

CVE-2020-14320

около 3 лет назад

In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-14320

около 3 лет назад

In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-14320

около 3 лет назад

In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task ...

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10738

больше 5 лет назад

A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6, 3.6 before 3.6.10, 3.5 before 3.5.12 and earlier unsupported versions. It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.

CVSS3: 7.5

EPSS: Низкий

CVE-2020-10738

больше 5 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2020-10738

больше 5 лет назад

A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6 ...

CVSS3: 7.5

EPSS: Низкий

CVE-2019-6970

больше 6 лет назад

Moodle 3.5.x before 3.5.4 allows SSRF.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-6970

больше 6 лет назад

Moodle 3.5.x before 3.5.4 allows SSRF.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-6970

больше 6 лет назад

Moodle 3.5.x before 3.5.4 allows SSRF.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-3852

больше 6 лет назад

A vulnerability was found in moodle before version 3.6.3. The get_with_capability_join and get_users_by_capability functions were not taking context freezing into account when checking user capabilities

CVSS3: 4.3

EPSS: Низкий

CVE-2019-3852

больше 6 лет назад

CVSS3: 4.3

EPSS: Низкий

CVE-2019-3852

больше 6 лет назад

A vulnerability was found in moodle before version 3.6.3. The get_with ...

CVSS3: 4.3

EPSS: Низкий

CVE-2019-3851

больше 6 лет назад

A vulnerability was found in moodle before versions 3.6.3 and 3.5.5. There was a link to site home within the the Boost theme's secure layout, meaning students could navigate out of the page.

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-1691 In Moodle 3.8, messages required extra sanitizing before updating the ...	CVSS3: 5.4	1% Низкий	около 3 лет назад
CVE-2020-14322 In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.	CVSS3: 7.5	1% Низкий	около 3 лет назад
CVE-2020-14322 In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.	CVSS3: 7.5	1% Низкий	около 3 лет назад
CVE-2020-14322 In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to l ...	CVSS3: 7.5	1% Низкий	около 3 лет назад
CVE-2020-14321 In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.	CVSS3: 8.8	60% Средний	около 3 лет назад
CVE-2020-14321 In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.	CVSS3: 8.8	60% Средний	около 3 лет назад
CVE-2020-14321 In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course ...	CVSS3: 8.8	60% Средний	около 3 лет назад
CVE-2020-14320 In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.	CVSS3: 6.1	1% Низкий	около 3 лет назад
CVE-2020-14320 In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.	CVSS3: 6.1	1% Низкий	около 3 лет назад
CVE-2020-14320 In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task ...	CVSS3: 6.1	1% Низкий	около 3 лет назад
CVE-2020-10738 A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6, 3.6 before 3.6.10, 3.5 before 3.5.12 and earlier unsupported versions. It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.	CVSS3: 7.5	2% Низкий	больше 5 лет назад
CVE-2020-10738 A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6, 3.6 before 3.6.10, 3.5 before 3.5.12 and earlier unsupported versions. It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.	CVSS3: 7.5	2% Низкий	больше 5 лет назад
CVE-2020-10738 A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6 ...	CVSS3: 7.5	2% Низкий	больше 5 лет назад
CVE-2019-6970 Moodle 3.5.x before 3.5.4 allows SSRF.	CVSS3: 7.5	0% Низкий	больше 6 лет назад
CVE-2019-6970 Moodle 3.5.x before 3.5.4 allows SSRF.	CVSS3: 7.5	0% Низкий	больше 6 лет назад
CVE-2019-6970 Moodle 3.5.x before 3.5.4 allows SSRF.	CVSS3: 7.5	0% Низкий	больше 6 лет назад
CVE-2019-3852 A vulnerability was found in moodle before version 3.6.3. The get_with_capability_join and get_users_by_capability functions were not taking context freezing into account when checking user capabilities	CVSS3: 4.3	0% Низкий	больше 6 лет назад
CVE-2019-3852 A vulnerability was found in moodle before version 3.6.3. The get_with_capability_join and get_users_by_capability functions were not taking context freezing into account when checking user capabilities	CVSS3: 4.3	0% Низкий	больше 6 лет назад
CVE-2019-3852 A vulnerability was found in moodle before version 3.6.3. The get_with ...	CVSS3: 4.3	0% Низкий	больше 6 лет назад
CVE-2019-3851 A vulnerability was found in moodle before versions 3.6.3 and 3.5.5. There was a link to site home within the the Boost theme's secure layout, meaning students could navigate out of the page.	CVSS3: 4.3	0% Низкий	больше 6 лет назад

Уязвимостей на страницу