Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.23 views

Moodle 3.9.x < 3.9.10 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...

6.5CVSS5.1AI score0.00901EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.31 views

Moodle 3.10.x < 3.10.7 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...

6.5CVSS5.1AI score0.00901EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.75 views

Moodle 3.11.x < 3.11.3 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...

6.5CVSS5.1AI score0.00901EPSS
Exploits0References10
NVD
NVD
added 2022/09/29 3:15 a.m.22 views

CVE-2021-40692

Insufficient capability checks made it possible for teachers to download users outside of their courses...

4.3CVSS0.00626EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/09/29 3:15 a.m.32 views

CVE-2021-40692

Insufficient capability checks made it possible for teachers to download users outside of their courses...

4.3CVSS5.9AI score0.00626EPSS
Exploits0References1
CVE
CVE
added 2022/01/21 6:17 p.m.68 views

CVE-2021-40692

CVE-2021-40692 (Moodle) is described in connected sources as an insufficient capability check that allows teachers to download users outside of their courses. The OSV/NVD entries confirm the vulnerability is an access-control flaw enabling cross‑course user data access. Exploitation details or pa...

4.3CVSS4.6AI score0.00626EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/01/21 6:17 p.m.24 views

CVE-2021-40692

Insufficient capability checks made it possible for teachers to download users outside of their courses...

5.1AI score0.00626EPSS
Exploits0References1
Rows per page
Query Builder