moodle

629 tracked vulnerabilities.

CVE-2012-1157 MEDIUM
Moodle < 2.2.2 - Unauthenticated Repository Access via Default Permissions
Nov 14, 2019
CVSS 4.3
EPSS 0.01
CVE-2012-1168 HIGH
Moodle < 2.2.2 - Unauthenticated Password Reset via Profile Update
Nov 14, 2019
CVSS 8.2
EPSS 0.02
CVE-2012-1156 HIGH
Moodle < 2.2.2 - Sensitive Information Exposure via Course Backup
Nov 14, 2019
CVSS 7.5
EPSS 0.01
CVE-2012-1155 HIGH
Moodle 1.9-1.9.16 - Unauthorized Data Exposure via Database Activity Export
Nov 14, 2019
CVSS 7.5
EPSS 0.01
CVE-2012-6087
Moodle < 2.2.11, 2.3.x < 2.3.9, 2.4.x < 2.4.6, 2.5.x < 2.5.2 - SSL Certificate Hostname Validation Bypass
Sep 16, 2013
EPSS 0.00
CVE-2012-6112
TinyMCE PHP Spellchecker < 2.0.6.1 - Server-Side Request Forgery via Control Character Injection
Jan 27, 2013
EPSS 0.01
CVE-2012-6106
Moodle 2.4.x - Authenticated Calendar Subscription Removal via managesubscriptions.php
Jan 27, 2013
EPSS 0.00
CVE-2012-6105
Moodle 2.1.x-2.1.9, 2.2.x-2.2.6, 2.3.x-2.3.3, 2.4.x-2.4.0 - Sensitive Information Exposure via Blog RSS Feed
Jan 27, 2013
EPSS 0.00
CVE-2012-6104
Moodle 2.2.x-2.2.7, 2.3.x-2.3.4, 2.4.x-2.4.1 - Unauthenticated Sensitive Information Exposure via RSS Feed
Jan 27, 2013
EPSS 0.00
CVE-2012-6103
Moodle 2.2.x-2.2.7 2.3.x-2.3.4 2.4.x-2.4.1 - Cross-Site Request Forgery in Messaging System
Jan 27, 2013
EPSS 0.00
CVE-2012-6102
Moodle 2.3.x < 2.3.4 and 2.4.x < 2.4.1 - Unauthenticated Submission Comments Access via Crafted URI
Jan 27, 2013
EPSS 0.00
CVE-2012-6101
Moodle 2.2.x < 2.2.7, 2.3.x < 2.3.4, 2.4.x < 2.4.1 - Open Redirect via Multiple Endpoints
Jan 27, 2013
EPSS 0.00
CVE-2012-6100
Moodle 2.2.x < 2.2.7, 2.3.x < 2.3.4, 2.4.x < 2.4.1 - Authenticated Information Disclosure via Activity Report
Jan 27, 2013
EPSS 0.00
CVE-2012-6099
Moodle 2.1-2.1.10 2.2-2.2.7 2.3-2.3.4 2.4-2.4.1 - Authenticated Arbitrary File Read via Backup Converter
Jan 27, 2013
EPSS 0.00
CVE-2012-6098
Moodle <1.9.19, 2.1.x<2.1.10, 2.2.x<2.2.7, 2.3.x<2.3.4, 2.4.x<2.4.1 - Privilege Escalation via Outcome Re-editing
Jan 27, 2013
EPSS 0.00
CVE-2012-5481
Moodle 2.3.x - Authenticated Capability Data Exposure via Check Permissions Page
Nov 21, 2012
EPSS 0.00
CVE-2012-5480
Moodle <2.1.9, <2.2.6, <2.3.3 - Auth Bypass
Nov 21, 2012
EPSS 0.00
CVE-2012-5479
Moodle <2.1.9, <2.2.6, <2.3.3 - Command Injection
Nov 21, 2012
EPSS 0.01
CVE-2012-5473
Moodle <2.1.9, <2.2.6, <2.3.3 - Info Disclosure
Nov 21, 2012
EPSS 0.00
CVE-2012-5472
Moodle <2.2.6, <2.3.3 - Auth Bypass
Nov 21, 2012
EPSS 0.00
CVE-2012-5471
Moodle <2.1.9, <2.2.6, <2.3.3 - Privilege Escalation
Nov 21, 2012
EPSS 0.00
CVE-2012-4408
Moodle 2.1.x < 2.1.8, 2.2.x < 2.2.5, 2.3.x < 2.3.2 - Authenticated Access Control Bypass via Course Reset
Sep 19, 2012
EPSS 0.00
CVE-2012-4407
Moodle 2.1.x-2.1.8, 2.2.x-2.2.5, 2.3.x-2.3.2 - Unauthenticated Sensitive Information Exposure via Blog File Reference
Sep 19, 2012
EPSS 0.00
CVE-2012-4403
Moodle 2.3.x - Exposure of Sensitive Information via Drag-and-Drop Script Error Response
Sep 19, 2012
EPSS 0.00
CVE-2012-4402
Moodle < 2.1.8, 2.2.5, 2.3.2 - Authenticated Arbitrary External-Service Function Execution
Sep 19, 2012
EPSS 0.00
Products
moodle 624 Jmol Plugin 2 Moodle LMS 1 saml_authentication 1 virtual_programming_lab 1
Quick Filters
Critical CVEs With Exploits In CISA KEV