Linux Distros Unpatched Vulnerability : CVE-2017-7491

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Moodle 2.x and 3.x, a CSRF attack is possible that allows attackers to change the number of courses displayed in the course overview block configuration...

UBUNTU-CVE-2024-37674

Cross Site Scripting vulnerability in Moodle CMS v3.10 allows a remote attacker to execute arbitrary code via the Field Name name parameter of a new activity...

SUSE CVE-2017-12156

Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback...

Moodle Information Disclosure Vulnerability (CNVD-2017-37856)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. An information disclosure vulnerability exists in the Moodle 3.x version. An attacker can exploit this vulnerability to enumerate the...

Moodle cross-site scripting vulnerability (CNVD-2017-27611)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A cross-site scripting vulnerability exists in the contact form on the 'non-respondent...

UBUNTU-CVE-2017-7531

In Moodle 3.3, the course overview block reveals activities in hidden courses...