Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.97 views

Moodle 4.0.x < 4.0.2 Multiple Vulnerabilities

The version of Moodle installed on the remote host is 3.9.x prior to 3.9.15, 3.11.x prior to 3.11.8 or 4.0.x prior to 4.0.2. It is, therefore, affected by multiple vulnerabilities: - A code injection through an omitted execution parameter elading to Remote Code Execution RCE for sites running...

9.8CVSS7.6AI score0.49102EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2022/07/28 12:0 a.m.25 views

Fedora: Security Advisory for moodle (FEDORA-2022-7e7ce7df2e)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7AI score0.49102EPSS
Exploits1References2
NVD
NVD
added 2022/07/25 4:15 p.m.15 views

CVE-2022-35652

An open redirect issue was found in Moodle due to improper sanitization of user-supplied data in mobile auto-login feature. A remote attacker can create a link that leads to a trusted website, however, when clicked, it redirects the victims to arbitrary URL/domain. Successful exploitation of this...

6.1CVSS0.00889EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2022/07/25 4:15 p.m.36 views

CVE-2022-35652

An open redirect issue was found in Moodle due to improper sanitization of user-supplied data in mobile auto-login feature. A remote attacker can create a link that leads to a trusted website, however, when clicked, it redirects the victims to arbitrary URL/domain. Successful exploitation of this...

6.1CVSS6.2AI score0.00889EPSS
Exploits0References6
CVE
CVE
added 2022/07/25 3:31 p.m.78 views

CVE-2022-35652

CVE-2022-35652 describes an open redirect in Moodle due to improper sanitization of user-supplied data in the mobile auto-login feature. The root cause is lack of proper input sanitization, allowing a remote attacker to craft a link that points to a trusted site but redirects victims to an arbitr...

6.1CVSS7.5AI score0.00889EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder