Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-12584

Malware in sbrugna...

4.3CVSS4.5AI score0.0054EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-5805

Malicious code in bioql PyPI...

8.8CVSS7.4AI score0.02326EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-2507

Malicious code in bioql PyPI...

4CVSS6.3AI score0.01712EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0540

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00732EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-4000

Malicious code in bioql PyPI...

5.3CVSS6.8AI score0.01266EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5797

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.0099EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-2314

Malicious code in bioql PyPI...

4CVSS6.3AI score0.01712EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-5643

Malicious code in bioql PyPI...

8.8CVSS6.8AI score0.01093EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-5471

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.04881EPSS
Exploits1References15
OSV
OSV
added 2025/06/17 5:59 a.m.6 views

BIT-MOODLE-2025-3638 Moodle: csrf risk in brickfield tool's analysis request action

A flaw was found in Moodle. The analysis request action in the Brickfield tool did not include the necessary token to prevent a Cross-site request forgery CSRF risk...

8.8CVSS6.1AI score0.00254EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/04/25 3:31 p.m.8 views

Moodle allows IDOR when accessing the cohorts report

A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve...

4.3CVSS6.5AI score0.00268EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/04/25 3:31 p.m.5 views

GHSA-345Q-9JMQ-G9Q4 Moodle allows unauthenticated REST API user data exposure

A flaw has been identified in Moodle where, on certain sites, unauthenticated users could retrieve sensitive user data—including names, contact information, and hashed passwords—via stack traces returned by specific API calls. Sites where PHP is configured with zend.exceptionignoreargs = 'On' or...

7.5CVSS7.7AI score0.00337EPSS
Exploits0References5
NVD
NVD
added 2025/04/25 3:15 p.m.13 views

CVE-2025-3640

A flaw was found in Moodle. Insufficient capability checks made it possible for a user enrolled in a course to access some details, such as the full name and profile image URL, of other users they did not have permission to access...

4.3CVSS0.00316EPSS
Exploits0References3
OSV
OSV
added 2025/04/25 2:43 p.m.7 views

CVE-2025-3647 Moodle: idor when accessing the cohorts report

A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve...

4.3CVSS6AI score0.00268EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/04/25 2:43 p.m.18 views

CVE-2025-3644 Moodle: ajax section delete does not respect course_can_delete_section()

A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify...

4.3CVSS0.00273EPSS
Exploits0References3
CVE
CVE
added 2025/04/25 2:43 p.m.73 views

CVE-2025-3641

CVE-2025-3641 affects Moodle (Moodle LMS) with a remote code execution risk in the Dropbox repository. By default, this is limited to sites where the Dropbox repository is enabled and accessible only to teachers and managers. The provided metrics indicate a high severity (CVSS 3.1: 8.8, Impact: c...

8.8CVSS9AI score0.00772EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/04/25 2:43 p.m.16 views

CVE-2025-3641 Moodle: authenticated remote code execution risk in the moodle lms dropbox repository

A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS Dropbox repository. By default, this was only available to teachers and managers on sites with the Dropbox repository enabled...

8.8CVSS0.00772EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/25 2:42 p.m.19 views

CVE-2025-3638 Moodle: csrf risk in brickfield tool's analysis request action

A flaw was found in Moodle. The analysis request action in the Brickfield tool did not include the necessary token to prevent a Cross-site request forgery CSRF risk...

0.00254EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.4 views

PT-2025-17917

Name of the Vulnerable Software and Affected Versions Moodle affected versions not specified Description A flaw was found in Moodle, specifically a remote code execution risk in the Moodle LMS EQUELLA repository. This repository is only available to teachers and managers by default on sites where...

9CVSS7.8AI score0.00816EPSS
Exploits0References20
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.5 views

PT-2025-17908

Name of the Vulnerable Software and Affected Versions Moodle affected versions not specified Description A security issue was discovered that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed...

7.5CVSS7.1AI score0.00356EPSS
Exploits0References14
Rows per page
Query Builder