moodle/moodle vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2017-7532Mediummoodle/moodle: Moodle Improper Privilege ManagementCVE-2017-7489Mediummoodle/moodle: Moodle External blog editing takeoverCVE-2018-10889Mediummoodle/moodle: Moodle sensitive information disclosureCVE-2018-10890Mediummoodle/moodle: Moodle Exposure of Sensitive Information to an Unauthorized ActorCVE-2018-14630Highmoodle/moodle: Moodle XML import of ddwtos could lead to intentional remote code executionCVE-2018-14631Mediummoodle/moodle: Moodle Cross-site ScriptingCVE-2018-16854Highmoodle/moodle: Moodle Login CSRF vulnerability in login formCVE-2018-1082Highmoodle/moodle: Moodle Improper AuthenticationCVE-2019-3809Criticalmoodle/moodle: Moodle Blind SSRF Risk in /badges/mybackpack.phpCVE-2019-3850Mediummoodle/moodle: Moodle Stored HTML in assignment submission comments allowed links to be opened directlyCVE-2019-3852Mediummoodle/moodle: Moodle context freezingCVE-2019-3851Mediummoodle/moodle: Moodle Secure layout contained an insecure link in Boost themeCVE-2018-1133Highmoodle/moodle: Moodle calculated question type allows remote code execution by Question authorsCVE-2018-1081Mediummoodle/moodle: Moodle Unauthenticated users can trigger custom messages to admin via paypal enrol scriptCVE-2019-3849Highmoodle/moodle: Moodle Users could elevate their role when accessing the LTI tool on a provider siteCVE-2019-3808Mediummoodle/moodle: Moodle XSS VulnerabilityCVE-2018-10891Highmoodle/moodle: Moodle XSS VulnerabilityCVE-2011-4289Mediummoodle/moodle: Moodle does not recogniz configuration setting that makes e-mail addresses visible only to course…CVE-2011-4292Mediummoodle/moodle: Moodle allows remote authenticated users to cause a denial of service (invalid database records)CVE-2011-4291Mediummoodle/moodle: Moodle allows remote authenticated users to cause a denial of service (invalid database records)CVE-2011-4285Mediummoodle/moodle: Moodle Incorrect Default SettingsCVE-2011-4287Mediummoodle/moodle: Moodle does not force password changes for autosubscribed usersCVE-2011-4280Mediummoodle/moodle: Moodle vulnerable to XSS via bundled spikephpcoverage libraryCVE-2011-4284Mediummoodle/moodle: Moodle allows remote attackers to obtain sensitive information from myprofile block by visiting…CVE-2011-4282Lowmoodle/moodle: Moodle vulnerable to Cross-site Scripting

Stop the waste.
Protect your environment with Kodem.