CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-12519

Malicious code in bioql PyPI...

8.8CVSS8.3AI score0.00667EPSS

Exploits0References6

Tenable Nessus•added 2025/09/03 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2023-5539

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers. CVE-2023-5539 Note that Nessus...

8.8CVSS8.6AI score0.022EPSS

Exploits0References2

Veracode•added 2025/04/29 3:59 a.m.•7 views

Remote Code Execution (RCE)

moodle/moodle is vulnerable to Remote Code Execution RCE. The vulnerability is due to its default access permissions for teachers and managers on sites, which allows teachers and managers to potentially execute arbitrary code when the repository is enabled...

8.8CVSS8.1AI score0.00667EPSS

Exploits0References6Affected Software1

Positive Technologies•added 2025/04/22 12:0 a.m.•1 views

PT-2025-17917

Name of the Vulnerable Software and Affected Versions Moodle affected versions not specified Description A flaw was found in Moodle, specifically a remote code execution risk in the Moodle LMS EQUELLA repository. This repository is only available to teachers and managers by default on sites where...

9CVSS7.8AI score0.00667EPSS

Exploits0References20

OSV•added 2024/03/06 11:5 a.m.•21 views

BIT-MOODLE-2022-0983

An SQL injection risk was identified in Badges code relating to configuring criteria. Access to the relevant capability was limited to teachers and managers by default...

8.8CVSS8.9AI score0.0039EPSS

Exploits0References3

Github Security Blog•added 2023/11/09 9:30 p.m.•29 views

Moodle Code Injection vulnerability

A remote code execution risk was identified in the IMSCP activity. By default this was only available to teachers and managers...

8.8CVSS8AI score0.022EPSS

Exploits0References6Affected Software1

ATTACKERKB•added 2023/03/23 9:15 p.m.•1 views

CVE-2023-28330

Insufficient sanitizing in backup resulted in an arbitrary file read risk. The capability to access this feature is only available to teachers, managers and admins by default...

6.5CVSS6.4AI score0.01048EPSS

Exploits0References5

Cvelist•added 2023/03/23 12:0 a.m.•15 views

CVE-2023-28330 Moodle: authenticated arbitrary file read through malformed backup file

Insufficient sanitizing in backup resulted in an arbitrary file read risk. The capability to access this feature is only available to teachers, managers and admins by default...

6.8AI score0.01048EPSS

Exploits0References3

OSV•added 2022/03/25 7:15 p.m.•1 views

UBUNTU-CVE-2022-0983

An SQL injection risk was identified in Badges code relating to configuring criteria. Access to the relevant capability was limited to teachers and managers by default...

8.8CVSS7.4AI score0.0039EPSS

Exploits0References2

Positive Technologies•added 2020/11/08 12:0 a.m.•5 views

PT-2023-21653 · Alt Linux · Alt Linux

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to insufficient sanitizing in the backup process, resulting in an arbitrary file read risk. By default, the capability to access th...

9.8CVSS6AI score0.83646EPSS

Exploits4References79

OSV•added 2019/03/25 6:29 p.m.•1 views

UBUNTU-CVE-2019-3808

A flaw was found in Moodle versions 3.6 to 3.6.1, 3.5 to 3.5.3, 3.4 to 3.4.6, 3.1 to 3.1.15 and earlier unsupported versions. The 'manage groups' capability did not have the 'XSS risk' flag assigned to it, but does have that access in certain places. Note that the capability is intended for use b...

5.4CVSS6.7AI score0.00173EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by