Lucene search
K

10 matches found

Github Security Blog
Github Security Blog
added 2025/10/23 12:31 p.m.8 views

Moodle sends quiz-related messages to inactive/suspended users

Moodle failed to verify enrolment status correctly when sending quiz notifications. As a result, suspended or inactive users might receive quiz-related messages, leaking limited course information...

4.3CVSS6.9AI score0.00208EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/23 11:28 a.m.6 views

EUVD-2025-35672

Moodle failed to verify enrolment status correctly when sending quiz notifications. As a result, suspended or inactive users might receive quiz-related messages, leaking limited course information...

4.3CVSS6.3AI score0.00208EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-2245

Malware in sbrugna...

6.8CVSS6.1AI score0.00983EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-2088

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00989EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-0921

Malicious code in bioql PyPI...

5.4CVSS5.4AI score0.00516EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:18 p.m.8 views

CVE-2021-32475

ID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected...

5.4CVSS5.6AI score0.00583EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/03/24 8:15 p.m.38 views

CVE-2022-40208

In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation during a quiz attempt...

4.3CVSS6AI score0.00563EPSS
Exploits0References2
NVD
NVD
added 2010/06/28 5:30 p.m.13 views

CVE-2010-2231

Cross-site request forgery CSRF vulnerability in report/overview/report.php in the quiz module in Moodle before 1.8.13 and 1.9.x before 1.9.9 allows remote attackers to hijack the authentication of arbitrary users for requests that delete quiz attempts via the attemptid parameter...

6.8CVSS7AI score0.00983EPSS
Exploits0References15
Cvelist
Cvelist
added 2010/06/28 5:0 p.m.22 views

CVE-2010-2231

Cross-site request forgery CSRF vulnerability in report/overview/report.php in the quiz module in Moodle before 1.8.13 and 1.9.x before 1.9.9 allows remote attackers to hijack the authentication of arbitrary users for requests that delete quiz attempts via the attemptid parameter...

6.9AI score0.00983EPSS
Exploits0References15
CVE
CVE
added 2010/06/28 5:0 p.m.65 views

CVE-2010-2231

Moodle vulnerability CVE-2010-2231 is a CSRF in the quiz module (report/overview/report.php). Affects Moodle versions before 1.8.13 and 1.9.x before 1.9.9. The flaw allows remote attackers to hijack the authentication of arbitrary users to issue requests that delete quiz attempts via the attempti...

6.8CVSS7AI score0.00983EPSS
Exploits0References15Affected Software1
Rows per page
Query Builder