5 matches found
Moodle 3.8.x < 3.8.7 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.5.x prior to 3.5.16, 3.8.x prior to 3.8.7, 3.9.x prior to 3.9.4 or 3.10.x prior to 3.10.1. It is, therefore, affected by multiple vulnerabilities: - A client-side Denial of Service DoS attack due to the lack of character limit when sending...
Moodle 3.9.x < 3.9.4 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.5.x prior to 3.5.16, 3.8.x prior to 3.8.7, 3.9.x prior to 3.9.4 or 3.10.x prior to 3.10.1. It is, therefore, affected by multiple vulnerabilities: - A client-side Denial of Service DoS attack due to the lack of character limit when sending...
Moodle 3.10.x < 3.10.1 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.5.x prior to 3.5.16, 3.8.x prior to 3.8.7, 3.9.x prior to 3.9.4 or 3.10.x prior to 3.10.1. It is, therefore, affected by multiple vulnerabilities: - A client-side Denial of Service DoS attack due to the lack of character limit when sending...
CVE-2021-20185
It was found in Moodle before version 3.10.1, 3.9.4, 3.8.7 and 3.5.16 that messaging did not impose a character limit when sending messages, which could result in client-side browser denial of service for users receiving very large messages...
CVE-2021-20185
CVE-2021-20185 affects Moodle prior to 3.10.1, 3.9.4, 3.8.7 and 3.5.16 where messaging lacked a character limit, enabling potential client-side DoS from very large messages. Affected products/versions: Moodle (before these fixed releases). Root cause: absence of input length enforcement in messag...