Количество 2 470
Количество 2 470
CVE-2021-40693
An authentication bypass risk was identified in the external database authentication functionality, due to a type juggling vulnerability.
CVE-2021-40693
An authentication bypass risk was identified in the external database ...
CVE-2021-40692
Insufficient capability checks made it possible for teachers to download users outside of their courses.
CVE-2021-40692
Insufficient capability checks made it possible for teachers to download users outside of their courses.
CVE-2021-40692
Insufficient capability checks made it possible for teachers to downlo ...
CVE-2021-40691
A session hijack risk was identified in the Shibboleth authentication plugin.
CVE-2021-40691
A session hijack risk was identified in the Shibboleth authentication plugin.
CVE-2021-40691
A session hijack risk was identified in the Shibboleth authentication ...
CVE-2021-3943
A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. A remote code execution risk when restoring backup files was identified.
CVE-2021-3943
A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. A remote code execution risk when restoring backup files was identified.
CVE-2021-3943
A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, ...
CVE-2021-36568
In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting Stored(XSS). This affects Moodle 3.11 and Moodle 3.10.4 and Moodle 3.9.7.
CVE-2021-36568
In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting Stored(XSS). This affects Moodle 3.11 and Moodle 3.10.4 and Moodle 3.9.7.
CVE-2021-36568
In certain Moodle products after creating a course, it is possible to ...
CVE-2021-36403
In Moodle, in some circumstances, email notifications of messages could have the link back to the original message hidden by HTML, which may pose a phishing risk.
CVE-2021-36403
In Moodle, in some circumstances, email notifications of messages could have the link back to the original message hidden by HTML, which may pose a phishing risk.
CVE-2021-36403
In Moodle, in some circumstances, email notifications of messages coul ...
CVE-2021-36402
In Moodle, Users' names required additional sanitizing in the account confirmation email, to prevent a self-registration phishing risk.
CVE-2021-36402
In Moodle, Users' names required additional sanitizing in the account confirmation email, to prevent a self-registration phishing risk.
CVE-2021-36402
In Moodle, Users' names required additional sanitizing in the account ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-40693 An authentication bypass risk was identified in the external database authentication functionality, due to a type juggling vulnerability. | CVSS3: 6.5 | 0% Низкий | почти 3 года назад |
| CVE-2021-40693 An authentication bypass risk was identified in the external database ... | CVSS3: 6.5 | 0% Низкий | почти 3 года назад |
 | CVE-2021-40692 Insufficient capability checks made it possible for teachers to download users outside of their courses. | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
| CVE-2021-40692 Insufficient capability checks made it possible for teachers to download users outside of their courses. | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
| CVE-2021-40692 Insufficient capability checks made it possible for teachers to downlo ... | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
| CVE-2021-40691 A session hijack risk was identified in the Shibboleth authentication plugin. | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
| CVE-2021-40691 A session hijack risk was identified in the Shibboleth authentication plugin. | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
| CVE-2021-40691 A session hijack risk was identified in the Shibboleth authentication ... | CVSS3: 4.3 | 0% Низкий | почти 3 года назад |
| CVE-2021-3943 A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. A remote code execution risk when restoring backup files was identified. | CVSS3: 9.8 | 1% Низкий | больше 3 лет назад |
| CVE-2021-3943 A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. A remote code execution risk when restoring backup files was identified. | CVSS3: 9.8 | 1% Низкий | больше 3 лет назад |
| CVE-2021-3943 A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, ... | CVSS3: 9.8 | 1% Низкий | больше 3 лет назад |
| CVE-2021-36568 In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting Stored(XSS). This affects Moodle 3.11 and Moodle 3.10.4 and Moodle 3.9.7. | CVSS3: 5.4 | 0% Низкий | почти 3 года назад |
| CVE-2021-36568 In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting Stored(XSS). This affects Moodle 3.11 and Moodle 3.10.4 and Moodle 3.9.7. | CVSS3: 5.4 | 0% Низкий | почти 3 года назад |
| CVE-2021-36568 In certain Moodle products after creating a course, it is possible to ... | CVSS3: 5.4 | 0% Низкий | почти 3 года назад |
| CVE-2021-36403 In Moodle, in some circumstances, email notifications of messages could have the link back to the original message hidden by HTML, which may pose a phishing risk. | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
| CVE-2021-36403 In Moodle, in some circumstances, email notifications of messages could have the link back to the original message hidden by HTML, which may pose a phishing risk. | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
| CVE-2021-36403 In Moodle, in some circumstances, email notifications of messages coul ... | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
| CVE-2021-36402 In Moodle, Users' names required additional sanitizing in the account confirmation email, to prevent a self-registration phishing risk. | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
| CVE-2021-36402 In Moodle, Users' names required additional sanitizing in the account confirmation email, to prevent a self-registration phishing risk. | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
| CVE-2021-36402 In Moodle, Users' names required additional sanitizing in the account ... | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу