2 matches found
Moodle 3.11.x < 3.11.10 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.17, 3.11.x prior to 3.11.10 or 4.0.x prior to 4.0.4. It is, therefore, affected by multiple vulnerabilities: - A stored Cross-Site Scripting XSS and page Denial of Service DoS vulnerabilities due to recursive rendering in...
CVE-2022-40314
CVE-2022-40314 describes a remote code execution risk when restoring backup files originating from Moodle 1.9. The vulnerability is reported with a high/critical impact (CVSS: 9.8, NETWORK attack vector, no user interaction) and is supported by multiple connected sources (NVD entry and Nessus/Ope...