CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

OSV•added 2022/05/13 1:13 a.m.•4 views

GHSA-HHXF-W8HJ-43W6 Moodle vulnerable to Cross-site Scripting

Cross-site scripting XSS vulnerability in the fixnonstandardentities function in the KSES HTML text cleaning library weblib.php, as used in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8, allows remote attackers to inject arbitrary web script or HTML via crafted HTML entities...

5.3CVSS5.5AI score0.00254EPSS

Exploits0References5

OSV•added 2022/05/13 1:13 a.m.•19 views

GHSA-3GM8-32VV-Q8MP Moodle Cross-site Scripting vulnerability in the KSES text cleaning filter

The KSES text cleaning filter in lib/weblib.php in Moodle before 1.8.13 and 1.9.x before 1.9.9 does not properly handle vbscript URIs, which allows remote authenticated users to conduct cross-site scripting XSS attacks via HTML input...

4CVSS4.9AI score0.00396EPSS

Exploits0References19

OpenVAS•added 2010/07/12 12:0 a.m.•21 views

Moodle Cross Site Scripting and Cross Site Request Forgery Vulnerabilities

This host is running Moodle and is prone to Cross-Site Scripting and Cross Site Request Forgery Vulnerabilities. OpenVAS Vulnerability Test $Id: gbmoodlexssncsrfvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Moodle Cross Site Scripting and Cross Site Request Forgery Vulnerabilities Authors: Madhuri...

6.8CVSS0.2AI score0.0061EPSS

Exploits0References3

OSV•added 2010/06/28 5:30 p.m.•1 views

DEBIAN-CVE-2010-2230

4CVSS5.9AI score0.00396EPSS

Exploits0References1

UbuntuCve•added 2010/06/28 5:30 p.m.•23 views

CVE-2010-2230

4CVSS5.8AI score0.00396EPSS

Exploits0References1

CVE•added 2010/06/28 5:0 p.m.•58 views

CVE-2010-2230

CVE-2010-2230 (Moodle) affects the Moodle web app’s KSES HTML text cleaning library (lib/weblib.php). The root cause is the KSES filter failing to properly handle vbscript URIs, allowing remote authenticated users to inject arbitrary HTML/script via HTML input (XSS). Affected are Moodle 1.8.13- a...

4CVSS5AI score0.00396EPSS

Exploits0References16Affected Software1

Cvelist•added 2010/06/28 5:0 p.m.•19 views

CVE-2010-2230

5.1AI score0.00396EPSS

Exploits0References16

Tenable Nessus•added 2010/06/18 12:0 a.m.•8 views

Moodle < 1.8.13 / 1.9.x < 1.9.9 Multiple Vulnerabilities

Binary data 5575.prm...

6.8CVSS7.3AI score0.0061EPSS

Exploits0References11

CVE•added 2010/04/29 9:0 p.m.•50 views

CVE-2010-1619

CVE-2010-1619 affects Moodle’s KSES HTML text cleaning library (weblib.php) via the fix_non_standard_entities function. The vulnerability allows remote XSS by crafting HTML entities and is reported in Moodle 1.8.x prior to 1.8.12 and 1.9.x prior to 1.9.8. Related advisories describe multiple link...

4.3CVSS5.5AI score0.00254EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by