Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-12586

Malware in sbrugna...

7.2CVSS6.8AI score0.00855EPSS
Exploits0References2
OSV
OSV
added 2025/08/12 5:51 a.m.7 views

BIT-MOODLE-2025-26530 Reflected XSS via question bank filter

The question bank filter required additional sanitizing to prevent a reflected XSS risk...

8.3CVSS6.1AI score0.00333EPSS
Exploits0References3
OSV
OSV
added 2025/02/24 9:31 p.m.9 views

GHSA-H697-W4PH-7PCX Moodle has a stored XSS in ddimageortext question type

The drag-and-drop onto image ddimageortext question type required additional sanitizing to prevent a stored XSS risk...

3.4CVSS3.6AI score0.00267EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/08/19 12:0 a.m.8 views

PT-2024-8616 · Moodle +2 · Moodle +2

Name of the Vulnerable Software and Affected Versions: Moodle versions affected versions not specified Description: A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. This issue is related to the lack of protection against SQL query structure...

8.8CVSS6.5AI score0.83343EPSS
Exploits8References79
Vulnrichment
Vulnrichment
added 2023/03/23 12:0 a.m.22 views

CVE-2023-28330 Moodle: authenticated arbitrary file read through malformed backup file

Insufficient sanitizing in backup resulted in an arbitrary file read risk. The capability to access this feature is only available to teachers, managers and admins by default...

6.7AI score0.01182EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/03/06 11:15 p.m.25 views

CVE-2021-36402

In Moodle, Users' names required additional sanitizing in the account confirmation email, to prevent a self-registration phishing risk...

5.3CVSS6.8AI score0.00526EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/03/06 9:15 p.m.45 views

CVE-2021-36393

In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses...

9.8CVSS7.2AI score0.52299EPSS
Exploits6References2
Vulnrichment
Vulnrichment
added 2023/03/06 12:0 a.m.10 views

CVE-2021-36392

In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses...

8.2AI score0.00841EPSS
Exploits0References1
Rows per page
Query Builder