Lucene search
K

12 matches found

Redos
Redos
added 2026/02/09 12:0 a.m.8 views

ROS-20260209-73-0038

A vulnerability in the event caption field of the Moodle virtual learning environment calendar is related to the failure to take measures to protect the structure of the web page. Exploitation of the vulnerability could allow a remote attacker to conduct cross-site scripting XSS attacks...

7.2CVSS5.3AI score0.00309EPSS
Exploits1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0844

Malicious code in bioql PyPI...

5.3CVSS6.7AI score0.00505EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-4334

Malicious code in bioql PyPI...

4.9CVSS6.3AI score0.01188EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2021-43560

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. Insufficient capability checks made it...

5.3CVSS6.4AI score0.00973EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2011-4203

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows...

5CVSS5.8AI score0.01104EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.4 views

SUSE CVE-2009-0501

Unspecified vulnerability in the Calendar export feature in Moodle 1.8 before 1.8.8 and 1.9 before 1.9.4 allows attackers to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors...

5CVSS6.5AI score0.01066EPSS
Exploits0References4
OSV
OSV
added 2021/11/22 4:15 p.m.4 views

UBUNTU-CVE-2021-43560

A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. Insufficient capability checks made it possible to fetch other users' calendar action events...

5.3CVSS5.7AI score0.00973EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2012/07/20 10:40 a.m.25 views

CVE-2011-4586

CRLF injection vulnerability in calendar/set.php in the Calendar subsystem in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

5CVSS6AI score0.02102EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/12/22 3:29 p.m.37 views

CVE-2011-4203

CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors involving the url variable...

5CVSS6AI score0.01104EPSS
Exploits1References1
OSV
OSV
added 2011/12/22 3:29 p.m.27 views

UBUNTU-CVE-2011-4203

CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors involving the url variable...

5CVSS5.9AI score0.01104EPSS
Exploits1References2
Prion
Prion
added 2011/12/22 3:29 p.m.16 views

Crlf injection

CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors involving the url variable...

5CVSS7.4AI score0.01104EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2011/12/22 3:0 p.m.25 views

CVE-2011-4203

CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors involving the url variable...

6.7AI score0.01104EPSS
Exploits1References2
Rows per page
Query Builder