4 matches found
Mageia: Security Advisory (MGASA-2014-0483)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-7847
iplookup/index.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote attackers to cause a denial of service resource consumption by triggering the calculation of an estimated latitude and longitude for an IP address...
CVE-2014-7847
CVE-2014-7847 affects Moodle: iplookup/index.php in Moodle until 2.7.3 (and earlier 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6) allows remote attackers to trigger calculated latitude/longitude for an IP address, causing a denial of service through resource consumption. The connected documents...
Updated moodle package fixes security vulnerabilities
In Moodle before 2.6.5, without forcing encoding, it was possible that UTF7 characters could be used to force cross-site scripts to AJAX scripts although this is unlikely on modern browsers and on most Moodle pages MSA-14-0035. In Moodle before 2.6.5, an XSS issue through $searchcourse in...