Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-25702

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS5.6AI score0.01276EPSS
Exploits0References2
OSV
OSV
added 2024/03/06 11:11 a.m.20 views

BIT-MOODLE-2020-25702

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS6AI score0.01276EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2021/03/29 8:43 p.m.57 views

Cross-site Scripting (XSS) in moodle

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS6.2AI score0.01276EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2021/03/29 8:43 p.m.27 views

GHSA-PGCP-M69H-P2GR Cross-site Scripting (XSS) in moodle

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS6AI score0.01276EPSS
Exploits0References6
Veracode
Veracode
added 2020/11/20 5:47 a.m.28 views

Cross-Site Scripting (XSS)

moodle/moodle is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute arbitrary Javascript in a user's browser by storing malicious code when renaming content bank items, which would render when a victim views the bank items...

6.1CVSS3.1AI score0.01276EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2020/11/19 5:15 p.m.14 views

CVE-2020-25702

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS6.5AI score
Exploits0References4
NVD
NVD
added 2020/11/19 5:15 p.m.13 views

CVE-2020-25702

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS6AI score0.01276EPSS
Exploits0References4
Prion
Prion
added 2020/11/19 5:15 p.m.16 views

Code injection

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

4.3CVSS6.2AI score0.01276EPSS
Exploits0References4Affected Software2
UbuntuCve
UbuntuCve
added 2020/11/19 5:15 p.m.29 views

CVE-2020-25702

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS6.1AI score0.01276EPSS
Exploits0References3
OSV
OSV
added 2020/11/19 5:15 p.m.1 views

UBUNTU-CVE-2020-25702

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.1CVSS6AI score0.01276EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/11/19 4:17 p.m.27 views

CVE-2020-25702

In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10...

6.2AI score0.01276EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/11/08 12:0 a.m.8 views

PT-2020-16164 · Moodle +1 · Moodle +1

Name of the Vulnerable Software and Affected Versions: Moodle versions 3.9 through 3.9.2 Description: The issue allowed including JavaScript when re-naming content bank items. This is fixed in Moodle versions 3.9.3 and 3.10. Recommendations: For versions 3.9 through 3.9.2, update to version 3.9.3...

9.8CVSS6.1AI score0.49102EPSS
Exploits1References65
Rows per page
Query Builder