3 matches found
Moodle 3.11.x < 3.11.10 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.17, 3.11.x prior to 3.11.10 or 4.0.x prior to 4.0.4. It is, therefore, affected by multiple vulnerabilities: - A stored Cross-Site Scripting XSS and page Denial of Service DoS vulnerabilities due to recursive rendering in...
CVE-2022-40316
The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to...
CVE-2022-40316
CVE-2022-40316 affects Moodle (H5P activity attempts report). The issue is an information disclosure: the report did not filter by groups in separate groups mode, potentially exposing attempts/users in groups to non-editing teachers. Documented CVSS 3.1 base score 4.3 (MEDIUM) with low confidenti...