Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-3324

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00457EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-43431

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access...

7.5CVSS5.5AI score0.00457EPSS
Exploits0References2
OSV
OSV
added 2025/05/02 6:18 a.m.6 views

BIT-MOODLE-2024-43431 Moodle: idor in badges allows deletion of arbitrary badges

A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access...

7.5CVSS7.4AI score0.00457EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.4 views

Moodle < 4.1.12 Multiple Vulnerabilities

According to its self-reported version, the Moodle install hosted on the remote host is 4.1.x prior to 4.1.12, 4.2.x prior to 4.2.9, 4.3.x prior to 4.3.6, or 4.4.x prior to 4.4.2. It is, therefore, affected by multiple vulnerabilities. - A LFI vulnerability when restoring malformed block backups....

8.1CVSS7.2AI score0.00646EPSS
Exploits0References39
Veracode
Veracode
added 2024/11/29 7:9 a.m.12 views

Authorization Bypass

moodle/moodle is vulnerable to Authorization Bypass. The vulnerability is due to insufficient capability checks, which allowed users to delete badges they did not have permission to access...

7.5CVSS6.9AI score0.00457EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/11/07 2:15 p.m.5 views

CVE-2024-43431

A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access...

7.5CVSS6.4AI score
Exploits0References2
OSV
OSV
added 2024/11/07 2:15 p.m.1 views

UBUNTU-CVE-2024-43431

A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access...

7.5CVSS5.8AI score0.00457EPSS
Exploits0References4
Snyk
Snyk
added 2024/11/07 1:41 p.m.1 views

Access Control Bypass

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Access Control Bypass due to insufficient capability checks. An attacker can delete badges they are not authorized to access by exploiting these checks. Remediation Upgrade moodle/moodle to version...

8.7CVSS6.8AI score0.00457EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/07 12:0 a.m.4 views

Moodle 安全漏洞

Moodle is a free e-learning software platform open-sourced by Moodle, also known as a course management system, learning management system, or virtual learning environment. A security vulnerability exists in Moodle that stems from an insufficient function check that allows for the deletion of...

7.5CVSS6.4AI score0.00457EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/01/25 7:11 p.m.26 views

CVE-2022-0335

A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. The "delete badge alignment" functionality did not include the necessary token check to prevent a CSRF risk...

8.8AI score0.00607EPSS
Exploits0References2
Rows per page
Query Builder