Lucene search
K

5 matches found

Snyk
Snyk
added 2026/02/03 11:48 a.m.2 views

Incorrect Authorization

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Incorrect Authorization via incomplete role checks in the badge awarding. An attacker can gain unauthorized access to badges and potentially escalate privileges by exploiting insufficient verificati...

9.8CVSS5.5AI score0.00272EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/23 11:46 a.m.1 views

Incorrect Authorization

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Incorrect Authorization due to the insufficient enrolment validation in quiz notifications. An attacker can obtain limited course information by receiving quiz-related messages intended for active...

5.3CVSS6.7AI score0.00208EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/23 11:46 a.m.1 views

Access Control Bypass

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Access Control Bypass due to the improperly enforced context-based capability checks in the external cohort search. An attacker can access restricted administrative data by leveraging permissions in...

5.3CVSS6.3AI score0.00227EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/23 11:46 a.m.4 views

Exposure of Information Through Directory Listing

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Exposure of Information Through Directory Listing due to the improper error handling. An attacker can gain unauthorized access to internal directory structures by sending crafted HTTP with absent...

6.9CVSS6.9AI score0.00274EPSS
Exploits0References2
OSV
OSV
added 2011/11/07 12:0 a.m.46 views

DSA-2338-1 moodle - several

Bulletin has no description...

6.8CVSS6AI score0.02102EPSS
Exploits0
Rows per page
Query Builder