23 matches found
EUVD-2025-11863
Malicious code in bioql PyPI...
EUVD-2024-0541
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-25979
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The URL parameters accepted by forum search were not limited to the allowed parameters. CVE-2024-25979 Note that Nessus relies on the presence of the package as...
PT-2025-17308 · Unknown · Namelessmc
Name of the Vulnerable Software and Affected Versions: NamelessMC versions 2.1.4 and prior Description: The issue concerns a lack of length validation for the s parameter in GET requests for the forum search functionality, allowing attackers to submit excessively long search queries. This can lea...
NamelessMC 安全漏洞
NamelessMC is a free, easy to use and powerful website software from the NamelessMC team. For your Minecraft server, which contains tons of features. A security vulnerability exists in NamelessMC 2.1.4 and earlier versions, which stems from a lack of length validation for the s parameter in the...
Improper Input Validation
moodle/moodle is vulnerable to Improper Input Validation. The vulnerability is due to the handling of URL parameters in the forum search functionality. An attacker can manipulate the search feature by injecting unexpected parameters, potentially leading to information disclosure or other unintend...
BIT-MOODLE-2024-25979 Msa-24-0002: forum search accepted random parameters in its url
The URL parameters accepted by forum search were not limited to the allowed parameters...
Fedora 38 : moodle (2024-d2f180202f)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-d2f180202f advisory. Fix for multiple CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
GHSA-6VJF-48FH-VXXJ Improper Handling of Parameters in moodle
The URL parameters accepted by forum search were not limited to the allowed parameters...
CVE-2024-25979
The URL parameters accepted by forum search were not limited to the allowed parameters...
CVE-2024-25979
The URL parameters accepted by forum search were not limited to the allowed parameters...
Code injection
The URL parameters accepted by forum search were not limited to the allowed parameters...
UBUNTU-CVE-2024-25979
The URL parameters accepted by forum search were not limited to the allowed parameters...
CVE-2024-25979 Msa-24-0002: forum search accepted random parameters in its url
The URL parameters accepted by forum search were not limited to the allowed parameters...
CVE-2024-25979 Msa-24-0002: forum search accepted random parameters in its url
The URL parameters accepted by forum search were not limited to the allowed parameters...
dafmotoren.nl XSS vulnerability
Vulnerable URL: http://www.dafmotoren.nl/forum/search.asp?mode=DoIt Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 9835737 VIP website status:| No Check dafmotoren.nl SSL...
ilmotto.it XSS vulnerability
Vulnerable URL: http://www.ilmotto.it/forum/search.asp?mode=DoIt Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check ilmotto.it SS...
own-free-website.com XSS vulnerability
Vulnerable URL: http://www.own-free-website.com/forum/search.php?mode=results Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 85163 VIP website status:| No Check own-free-website.co...
scout.com XSS vulnerability
Vulnerable URL: http://www.scout.com/forums/search?type=forum-messages=124124==alert/XSSPOSED/...
PT-2012-2869 · Moodle · Moodle
Name of the Vulnerable Software and Affected Versions: Moodle versions 1.9.x through 1.9.15 Description: The issue allows remote authenticated users to obtain the names and other details of arbitrary user accounts by searching for posts in the mod/forum/user.php file. Recommendations: For Moodle...