Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-3416

Malicious code in bioql PyPI...

5CVSS6.4AI score0.02118EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/22 3:49 p.m.9 views

CVE-2020-13146

Studio in Open edX Ironwood 2.5 allows CSV injection because an added cohort in CourseInstructorCohorts may contain a formula that is exported via the "CourseData DownloadsReportsDownload profile info" feature...

8.8CVSS7.2AI score0.0109EPSS
Exploits1
CNNVD
CNNVD
added 2025/05/21 12:0 a.m.7 views

Open edX Platform 安全漏洞

Open edX Platform is an open source course management system CMS from Open edX Open Source. The system can be used for MOOCs Massive Open Online Courses as well as smaller courses and training modules. A security vulnerability exists in versions prior to Open edX Platform 6740e75, which stems fro...

5.3CVSS6.6AI score0.00373EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/09/01 12:0 a.m.6 views

PT-2024-30646 · Unknown · Easytest Online Test Platform

Name of the Vulnerable Software and Affected Versions: Easytest Online Test Platform versions 24E01 and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands via the uid parameter in the download personal learning course function. This enables attacker...

8.8CVSS8.2AI score0.00469EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/07/04 12:0 a.m.7 views

WordPress plugin Tutor LMS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

7.5CVSS7.6AI score0.00984EPSS
Exploits2References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:19 a.m.3 views

SUSE CVE-2015-3180

lib/navigationlib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to obtain sensitive course-structure information by leveraging access to a student account with a suspended enrolment...

4CVSS7AI score0.01687EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/08/15 11:21 a.m.1 views

CVE-2022-2379

The Easy Student Results WordPress plugin through 2.2.8 lacks authorisation in its REST API, allowing unauthenticated users to retrieve information related to the courses, exams, departments as well as student's grades and PII such as email address, physical address, phone number etc...

7.5CVSS5.9AI score0.02801EPSS
Exploits2References3
OSV
OSV
added 2015/06/01 7:59 p.m.3 views

UBUNTU-CVE-2015-2270

lib/moodlelib.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before 2.7.6, and 2.8.x before 2.8.4, when the theme uses the blocks-regions feature, establishes the course state at an incorrect point in the login-validation process, which allows remote attackers to obtain sensitive course...

4.3CVSS5.8AI score0.01876EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2012/07/11 10:26 a.m.21 views

CVE-2011-4300

The filebrowser component in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not properly restrict access to category and course data, which allows remote attackers to obtain potentially sensitive information via a request for a file...

5CVSS5.9AI score0.02118EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2012/07/11 12:0 a.m.5 views

PT-2012-1848 · Moodle · Moodle

Name of the Vulnerable Software and Affected Versions: Moodle versions 2.0.0 through 2.0.4 Moodle versions 2.1.0 through 2.1.1 Description: The file browser component does not properly restrict access to category and course data, allowing remote attackers to obtain potentially sensitive informati...

5CVSS6.1AI score0.02118EPSS
Exploits0References11
Rows per page
Query Builder