29 matches found
EUVD-2022-4709
Malicious code in bioql PyPI...
EUVD-2025-4271
Malicious code in bioql PyPI...
EUVD-2022-2237
Malicious code in bioql PyPI...
BIT-MOODLE-2025-26530 Reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
Moodle 4.5.x < 4.5.1 Reflected XSS In Question Bank Filter
According to its self-reported version, the Moodle install hosted on the remote host is 4.3.x prior to 4.3.8 or 4.4.4 prior to 4.4.5 or 4.5.x prior to 4.5.1 . It is, therefore, affected by a Reflected XSS in question bank filter. Note that the scanner has not tested for these issues but has inste...
Moodle 4.4.4 < 4.4.5 Reflected XSS In Question Bank Filter
According to its self-reported version, the Moodle install hosted on the remote host is 4.3.x prior to 4.3.8 or 4.4.4 prior to 4.4.5 or 4.5.x prior to 4.5.1 . It is, therefore, affected by a Reflected XSS in question bank filter. Note that the scanner has not tested for these issues but has inste...
Moodle 4.3.x < 4.3.8 Reflected XSS In Question Bank Filter
According to its self-reported version, the Moodle install hosted on the remote host is 4.3.x prior to 4.3.8 or 4.4.4 prior to 4.4.5 or 4.5.x prior to 4.5.1 . It is, therefore, affected by a Reflected XSS in question bank filter. Note that the scanner has not tested for these issues but has inste...
Cross-site Scripting (XSS)
Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to missing sanitization in the question bank filter. Details Cross-site scripting or XSS is a code vulnerability that occurs when an attacker “injects” a malicious scrip...
Moodle allows reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
GHSA-4W32-C9G7-27QX Moodle allows reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
UBUNTU-CVE-2025-26530
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530
CVE-2025-26530 concerns Moodle where the question bank filter allowed a reflected XSS risk due to insufficient sanitization. The connected documents corroborate a reflected XSS in Moodle’s question bank filter, without detailing affected versions or patches in the provided sources. The CVE descri...
CVE-2025-26530 Reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
CVE-2025-26530 Reflected XSS via question bank filter
The question bank filter required additional sanitizing to prevent a reflected XSS risk...
PT-2025-7785 · Red Os · Red Os
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to a reflected XSS risk due to insufficient sanitizing in the question bank filter. Recommendations: At the moment, there is no information about a newer version that...
GHSA-P7V9-GJRH-563X Moodle XSS Vulnerability
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz question bank is imported, it was possible for the question preview that is displayed to execute JavaScript that is written into the question bank...
GHSA-3RQJ-JCHW-9CC7 Moodle Authentication Bypass in Question-Bank
The question-bank functionality in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass intended capability requirements and save questions via a savequestion action...
Moodle Authentication Bypass in Question-Bank
The question-bank functionality in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to bypass intended capability requirements and save questions via a savequestion action...