Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.75 views

Moodle 3.11.x < 3.11.3 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...

6.5CVSS5.1AI score0.00901EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.33 views

Moodle 3.10.x < 3.10.7 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...

6.5CVSS5.1AI score0.00901EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.23 views

Moodle 3.9.x < 3.9.10 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...

6.5CVSS5.1AI score0.00901EPSS
Exploits0References10
OSV
OSV
added 2022/09/29 3:15 a.m.19 views

CVE-2021-40694

Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account...

4.9CVSS6.6AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/09/29 3:15 a.m.37 views

CVE-2021-40694

Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account...

4.9CVSS6.8AI score0.00901EPSS
Exploits0References1
CVE
CVE
added 2022/01/21 6:17 p.m.89 views

CVE-2021-40694

CVE-2021-40694 affects Moodle-related components and is caused by insufficient escaping of the LaTeX preamble, enabling site administrators to read files accessible to the HTTP server system account. Reported impact per NVD: Confidentiality impact high; other impacts none; attack vector network; ...

4.9CVSS5AI score0.00901EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/01/21 6:17 p.m.35 views

CVE-2021-40694

Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account...

5.5AI score0.00901EPSS
Exploits0References1
Rows per page
Query Builder