Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.97 views

Moodle 3.8.x < 3.8.8 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.5.x prior to 3.5.17, 3.8.x prior to 3.8.8, 3.9.x prior to 3.9.5 or 3.10.x prior to 3.10.2. It is, therefore, affected by multiple vulnerabilities: - A stored Cross-Site Scripting XSS vulnerability attack due to the lack of sanitization of th...

6.9CVSS7.5AI score0.99019EPSS
Exploits13References13
OpenVAS
OpenVAS
added 2021/03/24 12:0 a.m.15 views

Fedora: Security Advisory for moodle (FEDORA-2021-50f63a0161)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.4CVSS5.7AI score0.01307EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/03/23 12:0 a.m.27 views

Fedora 33 : moodle (2021-431b232659)

The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-431b232659 advisory. - The ID number user profile field required additional sanitizing to prevent a stored XSS risk in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17...

5.4CVSS6AI score0.01307EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2021/03/17 12:0 a.m.18 views

Moodle < 3.5.17, 3.8.x < 3.8.8, 3.9.x < 3.9.5, 3.10.x < 3.10.2 Multiple Vulnerabilities

Moodle is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle"; ifdescription...

6.9CVSS7AI score0.99019EPSS
Exploits13References8
Circl
Circl
added 2021/03/16 1:29 a.m.8 views

CVE-2021-20282

creationtimestamp| type| source ---|---|--- 2021-03-16 01:29:22+00:00| seen| https://t.me/cibsecurity/24930 2024-04-24 20:01:24+00:00| seen| https://t.me/arpsyndicate/4808...

5.3CVSS6.5AI score0.01266EPSS
Exploits0References2
NVD
NVD
added 2021/03/15 10:15 p.m.15 views

CVE-2021-20282

When creating a user account, it was possible to verify the account without having access to the verification email link/secret in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17...

5.3CVSS0.01266EPSS
Exploits0References4
CVE
CVE
added 2021/03/15 9:35 p.m.82 views

CVE-2021-20282

CVE-2021-20282 is a Moodle vulnerability that allows bypassing the email verification step during account creation, enabling account verification without access to the verification email/secret. Connected sources confirm this issue affects multiple Moodle branches prior to versions 3.10.2, 3.9.5,...

5.3CVSS5.2AI score0.01266EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2021/03/15 9:35 p.m.21 views

CVE-2021-20282

When creating a user account, it was possible to verify the account without having access to the verification email link/secret in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17...

5.6AI score0.01266EPSS
Exploits0References4
Rows per page
Query Builder