EUVD-2022-4118

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-35653

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI...

UBUNTU-CVE-2022-35653

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

UBUNTU-CVE-2015-5341

modscorm in Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 mishandles availability dates, which allows remote authenticated users to bypass intended access restrictions and read SCORM contents via unspecified vectors...

Moodle LTI Module Insufficient Access Check Vulnerability

Moodle is an open source web-based teaching and learning application. A security vulnerability exists in the Moodle LTI module that allows an attacker to bypass certain security restrictions and perform unauthorized operations...

MRBS 1.2.x 'view_entry.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26977/info MRBS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

MRBS 1.2.x - view_entry.php SQL Injection

MRBS 1.2.x - viewentry.php SQL Injection source: https://www.securityfocus.com/bid/26977/info MRBS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...