moodle

629 tracked vulnerabilities.

CVE-2014-2572
Moodle 2.6.x <2.6.2 - Info Disclosure
Mar 24, 2014
EPSS 0.00
CVE-2014-2571
Moodle < 2.3.11, 2.4.x < 2.4.9, 2.5.x < 2.5.5, 2.6.x < 2.6.2 - Authenticated Cross-Site Scripting via Quiz Question
Mar 24, 2014
EPSS 0.00
CVE-2014-0127
Moodle <2.3.11, <2.4.9, <2.5.5, <2.6.2 - Auth Bypass
Mar 24, 2014
EPSS 0.00
CVE-2014-0129
Moodle <2.5.5-2.6.2 - Info Disclosure
Mar 24, 2014
EPSS 0.00
CVE-2014-0125
Moodle <2.3.11, <2.4.9, <2.5.5, <2.6.2 - Info Disclosure
Mar 24, 2014
EPSS 0.00
CVE-2014-0126
Moodle < 2.3.11, 2.4.x < 2.4.9, 2.5.x < 2.5.5, 2.6.x < 2.6.2 - Cross-Site Request Forgery via IMS Enterprise File Import
Mar 24, 2014
EPSS 0.00
CVE-2014-0124
Moodle <2.3.11, <2.4.9, <2.5.5, <2.6.2 - Info Disclosure
Mar 24, 2014
EPSS 0.00
CVE-2014-0122
Moodle < 2.3.11, 2.4.x < 2.4.9, 2.5.x < 2.5.5, 2.6.x < 2.6.2 - Authenticated Access Control Bypass in Chat Module
Mar 24, 2014
EPSS 0.00
CVE-2014-0123
Moodle < 2.3.11, 2.4.x < 2.4.9, 2.5.x < 2.5.5, 2.6.x < 2.6.2 - Unauthorized Wiki Access
Mar 24, 2014
EPSS 0.00
CVE-2014-0010
Moodle < 2.2.11, 2.3.x < 2.3.11, 2.4.x < 2.4.8, 2.5.x < 2.5.4, 2.6.x < 2.6.1 - Cross-Site Request Forgery
Jan 20, 2014
EPSS 0.00
CVE-2014-0009
Moodle <2.6.1 - Privilege Escalation
Jan 20, 2014
EPSS 0.00
CVE-2014-0008
Moodle <2.3.11, <2.4.8, <2.5.4, <2.6.1 - Info Disclosure
Jan 20, 2014
EPSS 0.00
CVE-2013-7341
Flowplayer Flash <3.2.17 - XSS
Mar 24, 2014
EPSS 0.00
CVE-2013-4525
Moodle < 2.2.11, 2.3.x < 2.3.10, 2.4.x < 2.4.7, 2.5.x < 2.5.3 - Stored XSS via Quiz Answer
Nov 26, 2013
EPSS 0.00
CVE-2013-4524
Moodle <2.2.11, <2.3.10, <2.4.7, <2.5.3 - Path Traversal
Nov 26, 2013
EPSS 0.00
CVE-2013-4523
Moodle <2.2.11, <2.3.10, <2.4.7, <2.5.3 - XSS
Nov 26, 2013
EPSS 0.00
CVE-2013-4522
Moodle <2.2.11, <2.3.10, <2.4.7, <2.5.3 - Info Disclosure
Nov 26, 2013
EPSS 0.00
CVE-2013-3630
Moodle SpellChecker Path Authenticated Remote Command Execution
Nov 01, 2013
EPSS 0.65
CVE-2013-4341
Moodle < 2.2.11, 2.3.x < 2.3.9, 2.4.x < 2.4.6, 2.5.x < 2.5.2 - Cross-Site Scripting via RSS Feed Blog Link
Sep 16, 2013
EPSS 0.10
CVE-2013-5674
Moodle 2.5.x - PHP Object Injection via Badge Description Unserialization
Sep 16, 2013
EPSS 0.01
CVE-2013-4313
Moodle < 2.2.11, 2.3.x < 2.3.9, 2.4.x < 2.4.6, 2.5.x < 2.5.2 - SQL Injection via Null Byte in Query String
Sep 16, 2013
EPSS 0.00
CVE-2013-4942
Moodle 2.1.10 2.2.x<2.2.11 2.3.x<2.3.8 2.4.x<2.4.5 2.5.x<2.5.1 - Cross-Site Scripting via Yahoo YUI Flash Uploader
Jul 29, 2013
EPSS 0.00
CVE-2013-4941
Moodle - Cross-Site Scripting via Uploader Component
Jul 29, 2013
EPSS 0.00
CVE-2013-4940
Moodle 2.1.10 2.2.x<2.2.11 2.3.x<2.3.8 2.4.x<2.4.5 2.5.x<2.5.1 - Cross-Site Scripting via Yahoo YUI IO Utility
Jul 29, 2013
EPSS 0.00
CVE-2013-4939
Moodle 2.1.10 2.2.x<2.2.11 2.3.x<2.3.8 2.4.x<2.4.5 2.5.x<2.5.1 - Cross-Site Scripting via IO Utility Component
Jul 29, 2013
EPSS 0.00
Products
moodle 624 Jmol Plugin 2 Moodle LMS 1 saml_authentication 1 virtual_programming_lab 1
Quick Filters
Critical CVEs With Exploits In CISA KEV