13 matches found
EUVD-2025-12517
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-3644
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify. CVE-2025-3644...
Moodle's AJAX section delete does not respect course_can_delete_section()
A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify...
GHSA-CPM7-MV33-JWF8 Moodle's AJAX section delete does not respect course_can_delete_section()
A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify...
CVE-2025-3644 Moodle: ajax section delete does not respect course_can_delete_section()
A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify...
CVE-2025-3644
A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections they did not have permission to modify...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
Cross site scripting
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
PT-2023-25561 · Unknown · Hospital Management System
Name of the Vulnerable Software and Affected Versions: Hostel Management System version 2.1 Description: A Cross-Site Scripting XSS issue allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into the add course section. Recommendations: For Hostel Management...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
Debian DSA-2338-1 : moodle - several vulnerabilities
Several cross-site scripting and information disclosure issues have been fixed in Moodle, a course management system for online learning : - MSA-11-0020 Continue links in error messages can lead offsite - MSA-11-0024 reCAPTCHA images were being authenticated from an older server - MSA-11-0025 Gro...