Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2013-2197

Malware in sbrugna...

4CVSS6.1AI score0.00176EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-3328

Malicious code in bioql PyPI...

8.1CVSS6.3AI score0.00522EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-43434

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check, leading to a CSRF vulnerability...

8.1CVSS5.4AI score0.00522EPSS
Exploits0References2
OSV
OSVadded 2025/05/02 6:18 a.m.2 views

BIT-MOODLE-2024-43434 Moodle: csrf risk in feedback non-respondents report

The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check, leading to a CSRF vulnerability...

8.1CVSS7.9AI score0.00522EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2025/02/24 9:31 p.m.14 views

Moodle's feedback response viewing and deletions did not respect Separate Groups mode

Separate Groups mode restrictions were not factored into permission checks before allowing viewing or deletion of responses in Feedback activities...

6.5CVSS7.1AI score0.00381EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2025/02/24 9:31 p.m.4 views

GHSA-PXG4-XJP7-W9C5 Moodle's feedback response viewing and deletions did not respect Separate Groups mode

Separate Groups mode restrictions were not factored into permission checks before allowing viewing or deletion of responses in Feedback activities...

6.5CVSS6.5AI score0.00381EPSS
Exploits0References4
Veracode
Veracodeadded 2024/11/29 7:37 a.m.12 views

Cross-Site Request Forgery (CSRF)

moodle/moodle is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is due to an incorrect CSRF token check in the bulk message sending feature of the Feedback module's non-respondents report, allowing an attacker to execute unauthorized actions...

8.1CVSS6.9AI score0.00522EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2024/11/07 2:15 p.m.3 views

CVE-2024-43434

The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check, leading to a CSRF vulnerability...

8.1CVSS6.6AI score
Exploits0References2
UbuntuCve
UbuntuCveadded 2021/03/15 10:15 p.m.29 views

CVE-2021-20280

Text-based feedback answers required additional sanitizing to prevent stored XSS and blind SSRF risks in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17...

5.4CVSS6.8AI score0.00881EPSS
Exploits2References3
Prion
Prionadded 2014/11/24 11:59 a.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in mod/feedback/mapcourse.php in the Feedback module in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the mod/feedback:mapcourse...

3.5CVSS5.7AI score0.00208EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder