exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2 470

GHSA-398j-f7m7-795j

больше 2 лет назад

PHPMailer vulnerable to email header injection

EPSS: Низкий

GHSA-389j-qw4x-m76h

около 3 лет назад

Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.

EPSS: Низкий

GHSA-382v-gxj9-ffhc

около 3 лет назад

Moodle uses predictable password-recovery tokens

CVSS3: 7.5

EPSS: Низкий

GHSA-37mm-gc69-pw8r

около 3 лет назад

Cross-site scripting (XSS) vulnerability in Moodle before 1.6.8, 1.7 before 1.7.6, 1.8 before 1.8.7, and 1.9 before 1.9.3 allows remote attackers to inject arbitrary web script or HTML via a Wiki page name (aka page title).

EPSS: Низкий

GHSA-36cm-vrqh-8p98

около 3 лет назад

Moodle allows attackers to cause a denial of service

EPSS: Низкий

GHSA-35wf-3wq2-r3hx

больше 2 лет назад

Moodle has Incorrect Default Permissions

CVSS3: 5.3

EPSS: Низкий

GHSA-35pr-gqm6-r366

около 3 лет назад

Moodle allows attackers to obtain sensitive personal-contact and unread-message-count information

EPSS: Низкий

GHSA-358r-g2xw-7c83

около 3 лет назад

Moodle backs up private files

CVSS3: 7.5

EPSS: Низкий

GHSA-356g-7x36-7m34

около 1 года назад

Moodle CSRF risks due to misuse of confirm_sesskey

CVSS3: 5.4

EPSS: Низкий

GHSA-332g-xh34-5c96

около 3 лет назад

Moodle Privilege escalation in quiz web services

CVSS3: 4.3

EPSS: Низкий

GHSA-32jc-9p58-p82x

больше 2 лет назад

Moodle Improper Access Control vulnerability

CVSS3: 8.2

EPSS: Низкий

GHSA-32hg-73hp-vwc8

около 3 лет назад

Moodle allows attackers to modify "Exclude grade" settings

CVSS3: 4.3

EPSS: Низкий

GHSA-2x36-7xfm-pgm7

около 3 лет назад

Moodle default permissions too permissive

CVSS3: 4.3

EPSS: Низкий

GHSA-2wmj-8mqg-r9q8

больше 2 лет назад

Moodle has Incorrect Default Permissions

CVSS3: 5.3

EPSS: Низкий

GHSA-2vhr-4mhq-m35c

около 3 лет назад

Moodle does not properly restrict access

EPSS: Низкий

GHSA-2r9m-wg35-rfvc

8 месяцев назад

Moodle vulnerable to cache poisoning via injection into storage

CVSS3: 7.7

EPSS: Низкий

GHSA-2phx-w35g-x9vm

около 3 лет назад

Moodle Weak Password Recovery Mechanism for Forgotten Password

CVSS3: 7.3

EPSS: Низкий

GHSA-2mg9-hv69-897x

около 3 лет назад

Moodle Ability to delete glossary entries that belong to another glossary

CVSS3: 4.3

EPSS: Низкий

GHSA-2mf2-xc34-hpjc

около 3 лет назад

course/reset.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 checks an update capability instead of a reset capability, which allows remote authenticated users to bypass intended access restrictions via a reset operation.

EPSS: Низкий

GHSA-2m72-m5cw-3g9h

около 3 лет назад

Missing permission check in Moodle

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-398j-f7m7-795j PHPMailer vulnerable to email header injection		0% Низкий	больше 2 лет назад
GHSA-389j-qw4x-m76h Multiple SQL injection vulnerabilities in the get_record function in datalib.php in Moodle 1.5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) category.php and (2) info.php.		1% Низкий	около 3 лет назад
GHSA-382v-gxj9-ffhc Moodle uses predictable password-recovery tokens	CVSS3: 7.5	1% Низкий	около 3 лет назад
GHSA-37mm-gc69-pw8r Cross-site scripting (XSS) vulnerability in Moodle before 1.6.8, 1.7 before 1.7.6, 1.8 before 1.8.7, and 1.9 before 1.9.3 allows remote attackers to inject arbitrary web script or HTML via a Wiki page name (aka page title).		1% Низкий	около 3 лет назад
GHSA-36cm-vrqh-8p98 Moodle allows attackers to cause a denial of service		1% Низкий	около 3 лет назад
GHSA-35wf-3wq2-r3hx Moodle has Incorrect Default Permissions	CVSS3: 5.3	0% Низкий	больше 2 лет назад
GHSA-35pr-gqm6-r366 Moodle allows attackers to obtain sensitive personal-contact and unread-message-count information		0% Низкий	около 3 лет назад
GHSA-358r-g2xw-7c83 Moodle backs up private files	CVSS3: 7.5	1% Низкий	около 3 лет назад
GHSA-356g-7x36-7m34 Moodle CSRF risks due to misuse of confirm_sesskey	CVSS3: 5.4	0% Низкий	около 1 года назад
GHSA-332g-xh34-5c96 Moodle Privilege escalation in quiz web services	CVSS3: 4.3	0% Низкий	около 3 лет назад
GHSA-32jc-9p58-p82x Moodle Improper Access Control vulnerability	CVSS3: 8.2	0% Низкий	больше 2 лет назад
GHSA-32hg-73hp-vwc8 Moodle allows attackers to modify "Exclude grade" settings	CVSS3: 4.3	0% Низкий	около 3 лет назад
GHSA-2x36-7xfm-pgm7 Moodle default permissions too permissive	CVSS3: 4.3	1% Низкий	около 3 лет назад
GHSA-2wmj-8mqg-r9q8 Moodle has Incorrect Default Permissions	CVSS3: 5.3	0% Низкий	больше 2 лет назад
GHSA-2vhr-4mhq-m35c Moodle does not properly restrict access		0% Низкий	около 3 лет назад
GHSA-2r9m-wg35-rfvc Moodle vulnerable to cache poisoning via injection into storage	CVSS3: 7.7	0% Низкий	8 месяцев назад
GHSA-2phx-w35g-x9vm Moodle Weak Password Recovery Mechanism for Forgotten Password	CVSS3: 7.3	0% Низкий	около 3 лет назад
GHSA-2mg9-hv69-897x Moodle Ability to delete glossary entries that belong to another glossary	CVSS3: 4.3	0% Низкий	около 3 лет назад
GHSA-2mf2-xc34-hpjc course/reset.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 checks an update capability instead of a reset capability, which allows remote authenticated users to bypass intended access restrictions via a reset operation.		0% Низкий	около 3 лет назад
GHSA-2m72-m5cw-3g9h Missing permission check in Moodle	CVSS3: 4.3	0% Низкий	около 3 лет назад

Уязвимостей на страницу