29 matches found
EUVD-2022-2237
Malicious code in bioql PyPI...
EUVD-2025-4271
Malicious code in bioql PyPI...
EUVD-2022-4709
Malicious code in bioql PyPI...
BIT-MOODLE-2025-26530 Reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
Moodle 4.4.4 < 4.4.5 Reflected XSS In Question Bank Filter
According to its self-reported version, the Moodle install hosted on the remote host is 4.3.x prior to 4.3.8 or 4.4.4 prior to 4.4.5 or 4.5.x prior to 4.5.1 . It is, therefore, affected by a Reflected XSS in question bank filter. Note that the scanner has not tested for these issues but has inste...
Moodle 4.3.x < 4.3.8 Reflected XSS In Question Bank Filter
According to its self-reported version, the Moodle install hosted on the remote host is 4.3.x prior to 4.3.8 or 4.4.4 prior to 4.4.5 or 4.5.x prior to 4.5.1 . It is, therefore, affected by a Reflected XSS in question bank filter. Note that the scanner has not tested for these issues but has inste...
Moodle 4.5.x < 4.5.1 Reflected XSS In Question Bank Filter
According to its self-reported version, the Moodle install hosted on the remote host is 4.3.x prior to 4.3.8 or 4.4.4 prior to 4.4.5 or 4.5.x prior to 4.5.1 . It is, therefore, affected by a Reflected XSS in question bank filter. Note that the scanner has not tested for these issues but has inste...
Moodle allows reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
Cross-site Scripting (XSS)
Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to missing sanitization in the question bank filter. Details Cross-site scripting or XSS is a code vulnerability that occurs when an attacker “injects” a malicious scrip...
GHSA-4W32-C9G7-27QX Moodle allows reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
UBUNTU-CVE-2025-26530
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530 Reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530 Reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530
CVE-2025-26530 concerns Moodle where the question bank filter allowed a reflected XSS risk due to insufficient sanitization. The connected documents corroborate a reflected XSS in Moodle’s question bank filter, without detailing affected versions or patches in the provided sources. The CVE descri...
PT-2025-7785 · Red Os · Red Os
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to a reflected XSS risk due to insufficient sanitizing in the question bank filter. Recommendations: At the moment, there is no information about a newer version that...
GHSA-P7V9-GJRH-563X Moodle XSS Vulnerability
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz question bank is imported, it was possible for the question preview that is displayed to execute JavaScript that is written into the question bank...
Moodle Authentication Bypass in Question-Bank
The question-bank functionality in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass intended capability requirements and save questions via a savequestion action...
GHSA-3RQJ-JCHW-9CC7 Moodle Authentication Bypass in Question-Bank
The question-bank functionality in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass intended capability requirements and save questions via a savequestion action...