121 matches found
EUVD-2022-3034
Malicious code in bioql PyPI...
EUVD-2025-19060
Malicious code in bioql PyPI...
EUVD-2022-2854
Malicious code in bioql PyPI...
EUVD-2022-3283
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-7532
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Moodle 3.x, course creators are able to change system default settings for courses. CVE-2017-7532 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2018-1133
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection...
Linux Distros Unpatched Vulnerability : CVE-2018-1042
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Moodle 3.x has Server Side Request Forgery in the filepicker. CVE-2018-1042 Note that Nessus relies on the presence of the package as reported by the vendor...
CVE-2025-53021
A session fixation vulnerability in Moodle 3.x through 3.11.18 allows unauthenticated attackers to hijack user sessions via the sesskey parameter. The sesskey can be obtained without authentication and reused within the OAuth2 login flow, resulting in the victim's session being linked to the...
SUSE CVE-2018-1045
In Moodle 3.x, there is XSS via a calendar event name...
SUSE CVE-2018-1044
In Moodle 3.x, quiz web services allow students to see quiz results when it is prohibited in the settings...
SUSE CVE-2018-1043
In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames...
Moodle Cross-site Scripting in assignment submission page
In Moodle 3.x, there is Cross-site Scripting in the assignment submission page...
GHSA-93GJ-RG98-H7MM Moodle XSS Vulnerability
In Moodle 3.x, XSS can occur via evidence of prior learning...
GHSA-54R2-R67G-FR9M Moodle User fullname disclosure on user preferences page
Moodle 3.x has user fullname disclosure on the user preferences page...
Moodle User fullname disclosure on user preferences page
Moodle 3.x has user fullname disclosure on the user preferences page...
Moodle sensitive information disclosure
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access...
GHSA-332G-XH34-5C96 Moodle Privilege escalation in quiz web services
In Moodle 3.x, quiz web services allow students to see quiz results when it is prohibited in the settings...
Moodle Privilege escalation in quiz web services
In Moodle 3.x, quiz web services allow students to see quiz results when it is prohibited in the settings...
GHSA-595J-WPFG-23W4 Moodle XSS Vulnerability
In Moodle 3.x, there is XSS via a calendar event name...
Moodle XSS Vulnerability
In Moodle 3.x, there is XSS via a calendar event name...