Lucene search
GitHub Advisory DatabaseGHSA-C3J6-33R4-89Q3HistoryMay 24, 2022 - 5:40 p.m.
Moodle Client side denial of service via personal message
2022-05-2417:40:31
CWE-400
CWE-770
GitHub Advisory Database
github.com
2
It was found in Moodle before version 3.10.1, 3.9.4, 3.8.7 and 3.5.16 that messaging did not impose a character limit when sending messages, which could result in client-side (browser) denial of service for users receiving very large messages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| moodle/moodle | lt | 3.10.1 | |
| moodle/moodle | lt | 3.9.4 | |
| moodle/moodle | lt | 3.8.7 | |
| moodle/moodle | lt | 3.5.16 |
Related
osv
osv
Moodle Client side denial of service via personal message
2022-05-24 17:40:31
CVE-2021-20185
2021-01-28 20:15:13
BIT-moodle-2021-20185
2024-03-06 11:11:15
prion
prion
Design/Logic Flaw
2021-01-28 20:15:00
cvelist
cvelist
CVE-2021-20185
2021-01-28 19:01:04
ubuntucve
ubuntucve
CVE-2021-20185
2021-01-28 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-01-29 01:53:47
cve
cve
CVE-2021-20185
2021-01-28 20:15:00
openvas
openvas
nessus
nessus
Moodle 3.5.x < 3.5.16 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.10.x < 3.10.1 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.8.x < 3.8.7 Multiple Vulnerabilities
2023-02-20 00:00:00