moodle

CVE-2009-4303

Moodle <1.8.11-1.9.7 - Info Disclosure

Dec 16, 2009

EPSS 0.01

CVE-2009-4302

Moodle 1.8 <1.8.11-1.9 <1.9.7 - Info Disclosure

Dec 16, 2009

EPSS 0.01

CVE-2009-4301

Moodle <1.8.11-1.9.7 - Privilege Escalation

Dec 16, 2009

EPSS 0.01

CVE-2009-4300

Moodle <1.8.11-1.9.7 - Info Disclosure

Dec 16, 2009

EPSS 0.01

CVE-2009-4299

Moodle <1.8.11-1.9.7 - Info Disclosure

Dec 16, 2009

EPSS 0.01

CVE-2009-4298

Moodle <1.8.11-1.9.7 - Info Disclosure

Dec 16, 2009

EPSS 0.01

CVE-2009-4297

Moodle 1.8-1.8.10 and 1.9-1.9.6 - Cross-Site Request Forgery

Dec 16, 2009

EPSS 0.00

CVE-2009-1171

Moodle 1.6-1.6.9 1.7-1.7.7 1.8-1.8.9 1.9-1.9.5 - Arbitrary File Read via TeX Filter Input Command

Mar 30, 2009

EPSS 0.10

CVE-2009-0502

Snoopy 1.2.3 - XSS

Feb 10, 2009

EPSS 0.00

CVE-2009-0501

Moodle <1.8.8, <1.9.4 - Info Disclosure

Feb 10, 2009

EPSS 0.00

CVE-2009-0500

Moodle 1.6-1.6.9, 1.7-1.7.7, 1.8-1.8.8, 1.9-1.9.4 - Cross-Site Scripting in Log Report

Feb 10, 2009

EPSS 0.00

CVE-2009-0499

Moodle 1.7-1.7.7, 1.8-1.8.8, 1.9-1.9.4 - Cross-Site Request Forgery via Forum Post Deletion

Feb 10, 2009

EPSS 0.00

CVE-2008-6125

Moodle <1.6.6-1.7.3 - Privilege Escalation

Feb 13, 2009

EPSS 0.00

CVE-2008-6124

Moodle <1.6.7-1.9.2 - SQL Injection

Feb 13, 2009

EPSS 0.00

CVE-2008-5432

Moodle <1.6.8, <1.7.6, <1.8.7, <1.9.3 - XSS

Dec 11, 2008

EPSS 0.01

CVE-2008-5153

Moodle 1.8.2 - Local File Overwrite

Nov 18, 2008

EPSS 0.00

CVE-2008-3325

Moodle 1.6-1.6.6 and 1.7-1.7.4 - Cross-Site Request Forgery via User Profile Edit Page

Jul 25, 2008

EPSS 0.00

CVE-2008-3326

Moodle 1.6.x < 1.6.7 and 1.7.x < 1.7.5 - Cross-Site Scripting via Blog Entry Title Parameter

Jul 25, 2008

EPSS 0.01

CVE-2008-3327

Moodle 1.6.5 - Exposure of Sensitive Information via Direct Request to Blog and Stats Pages

Jul 25, 2008

EPSS 0.00

CVE-2008-1502

eGroupWare < 1.4.003 and Moodle < 1.8.5 - Cross-Site Scripting via Crafted URL Protocols

Mar 25, 2008

EPSS 0.01

CVE-2008-0123

moodle < 1.8.3 - Cross-Site Scripting via install.php dbname Parameter

Jan 12, 2008

EPSS 0.01

CVE-2007-3555

Moodle 1.7.1 - Cross-Site Scripting via Search Parameter Style Expression

Jul 04, 2007

EPSS 0.05

CVE-2007-1647

Moodle < 1.5.2 - Unauthenticated Sensitive Information Exposure via Session File Access

Mar 24, 2007

EPSS 0.06

CVE-2007-1429

Moodle 1.7.1 - Remote File Inclusion via cmd Parameter

Mar 13, 2007

EPSS 0.01

CVE-2006-6625

Moodle 1.6.1 - Cross-Site Scripting via navtail Parameter

Dec 18, 2006

EPSS 0.01