Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist moodle/moodle Security Advisories

Loading...
Moderate
GSA_kwCzR0hTQS1mNm1oLTc5dmgtMmh2N84AA6Os
Cross-site Scripting in Moodle Chat
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Low
GSA_kwCzR0hTQS05cjI2LTV3ODgtcWhwOc4AA5X0
Authorization Bypass in moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 5.0
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS03cGpwLWZtOTMtcDZwas4AA5Xy
Cross-Site Request Forgery in moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS1qZnJnLTlocHEtOWh2cM4AA5Xx
Improper Access Control in moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 3 months ago
High
GSA_kwCzR0hTQS00ODdnLTNtM3YtaGpocc4AA5Xz
Uncontrolled Resource Consumption in moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS1jcDhtLWg3NzctZzRwM84AA5Xw
Improper Access Control in moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS02dmpmLTQ4Zmgtdnh4as4AA5Xv
Improper Handling of Parameters in moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS01cDJ4LTg0MjctOWZncM4AA5Nz
Moodle Improper Access Control vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: 4 months ago
Low
GSA_kwCzR0hTQS1qcjgzLTh4NjUteGNyNc4AA3Bu
Moodle Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS1qNXhmLWd2ODktZzQyMs4AA3Bq
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS01Y3Z4LWN3cHgtOXJqaM4AA3Br
Moodle Code Injection vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS05Z3FwLTNnMjgtdzl4Y84AA3B4
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS1jd2gyLXE0NHgtNXczY84AA3Bl
Moodle Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS1mbTVoLTU4ZzItNG0zZs4AA3Bj
Moodle Improper Access Control vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS0yNmZnLXYzMnItaDY2M84AA3Bo
Moodle Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: 7 months ago
High
GSA_kwCzR0hTQS13OHgyLXc0cXItdjN4NM4AA3Bg
Moodle Code Injection vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS04bW0yLW0yZ3AtYzZ4Ms4AA3Bn
Moodle Improper Access Control vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS0zeHhtLTNnM2MtdzU3Oc4AA3B3
Moodle Code Injection vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.7
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS05NzI0LWg4cDctcjNqds4AA3Bk
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS0yOGdjLTRxcTUtOHEyNs4AA3Bi
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS00OW12LXZmY3AtOGdnOc4AA0AP
Moodle vulnerable to SQL Injection
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.9
Published: 11 months ago
High
GSA_kwCzR0hTQS14eHA0LW1mNGgtNmN3bc4AA0AO
Moodle vulnerable to Server Side Request Forgery
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: 11 months ago
Moderate
GSA_kwCzR0hTQS1md2ZqLThwMzYtcmM2NM4AA0AN
Moodle vulnerable to Cross-site Scripting
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: 11 months ago
Moderate
GSA_kwCzR0hTQS13MnBtLWZyNjItamd2NM4AAzXb
Moodle vulnerable to stored Cross-site Scripting
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS0yMmdqLThxajItZmo0Ns4AAzEK
Moodle External Control of File Name or Path vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 1 year ago
High
GSA_kwCzR0hTQS03bW1jLTIyZzctM3hxMs4AAzD9
Moodle SQL Injection vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.3
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS05NDhmLWo0NjQtcmZqMs4AAyRz
Moodle may allow students to bypass sequential navigation during a quiz attempt
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS12ajVwLWZwNDItNzc0cM4AAyQ1
Moodle may display roles to users who don't have access to them
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: about 1 year ago
High
GSA_kwCzR0hTQS13eG1xLXY5Z3gtNzVwZ84AAyQn
Moodle vulnerable to Cross-site Request Forgery
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS1xMngzLTJmOWctaDU1Oc4AAyQm
Moodle's Mustache pix helper contained a potential Mustache injection risk if combined with user input
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 13.9
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS01NnI5LTcydngtcTk4Oc4AAyQ2
Moodle arbitrary file read vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS05ZjQ1LTlxcnctcHA0ds4AAyQt
Moodle vulnerable to Cross-site Scripting when algebra filter enabled but not functional
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: about 1 year ago
High
GSA_kwCzR0hTQS03MncyLWo1MmMtNzY4Ms4AAyQw
Moodle SQL Injection vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1oaDUyLWc1YzQtd3ByaM4AAyQl
Moodle may allow authenticated users to enumerate other user's names via learning plans page
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03N2ptLWYzdmoteHZ4Ms4AAyQq
Moodle vulnerable to Cross-site Scripting
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1wcmptLTJmajItNzg3Zs4AAyQo
Moodle may allow teachers to access the names of users they could not otherwise access
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS0yd21qLThtcWctcjlxOM4AAx9m
Moodle has Incorrect Default Permissions
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03ODZnLXh2OHYtOWg5M84AAx9n
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03OWpwLW02NGYtcGdyY84AAx9l
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1nNmg2LTRmcDYtdzMzd84AAx9f
Moodle vulnerable to Stored Cross-site Scripting
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1ndjhmLTQzcGctYzVxd84AAx9j
Moodle Improper Input Validation vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS0zNXdmLTN3cTItcjNoeM4AAx9e
Moodle has Incorrect Default Permissions
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1qOWN3LTVjcGotOXFqNc4AAx9i
Moodle has a Hidden Functionality vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS1mNDZqLXI3cTMtNmNtMs4AAx9L
Moodle SQL Injection vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 13.9
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS1xYzg2LXZnZjItNmZxNs4AAx9M
Moodle SQL Injection vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 13.9
Published: about 1 year ago
High
GSA_kwCzR0hTQS00cm1qLXc1OG0tZnZjaM4AAx9G
Moodle vulnerable to Server-Side Request Forgery
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 1 year ago
High
GSA_kwCzR0hTQS0yNTYzLWZwOWMtbWdtOM4AAx9C
Moodle Session Fixation vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS0yNzN3LTdmeGotcGNwNs4AAx89
Moodle vulnerable to Uncontrolled Resource Consumption
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS05N3FmLXBxN3gtOTY0bc4AAxt9
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: over 1 year ago
High
GSA_kwCzR0hTQS0zMmpjLTlwNTgtcDgyeM4AAxt-
Moodle Improper Access Control vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1ncm1qLWdwd20tOTh3d84AAxt7
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS14cWNmLXZncWMtcGNtZ84AAwDF
Moodle blind Server-Side Request Forgery (SSRF) vulnerability in LTI provider library
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02Z3gyLWc3NzMtaHY5aM4AAwBP
Moodle reflected cross-site scripting vulnerability in policy tool
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14djcyLTZwZ2gtY2pqOM4AAwBO
Moodle stored-XSS vulnerability in some "social" user profile fields
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS04djIzLXc0dzUtdzgzY84AAwBQ
Cross-Site Request Forgery in Moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: over 1 year ago
High
GSA_kwCzR0hTQS14anIzLWZ3cDktOWc5Ns4AAvLD
Moodle Cross-Site Request Forgery (CSRF)
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS0yaG1tLXEyNzIteG1oZs4AAvIu
Moodle remote code execution
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 13.9
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1tcXc5LTNjam0teHdwM84AAvIw
Moodle Minor SQL injection risk in admin user browsing
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 13.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0zODVmLXZncTctOGhoeM4AAvJX
Moodle No groups filtering in H5P activity attempts report
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qcWdyLWdoNjItamY1M84AAvJO
Moodle Stored Cross-site Scripting and page denial of service
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.0
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS05MnZoLW1yMnctajJjcs4AAvHn
Moodle Improper Authentication
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS13cjZxLXh2MjMtcmZxOc4AAvHo
Moodle Incorrect Authorization
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0yanhnLW12Mm0tajRyN84AAvH6
Moodle type juggling vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1ncDR3LWY1N3ItOXJ4M84AAvHm
Moodle Exposure of Sensitive Information to an Unauthorized Actor
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1tMzdnLW13Y2ctN2o3ds4AAvH2
Moodle Improper Encoding or Escaping of Output
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1mbTZtLWZnMjMtNjdqcc4AAuwm
Moodle Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1mY3B3LXZxaDUtNnF3as4AAuCA
Moodle reflected XSS Vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1jd2hwLXJxZnItODQ2Ms4AAt2I
Moodle XSS Vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS02MndoLW00anItMjMzcs4AAtoK
Moodle LTI module reflected XSS risk
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS14cDJmLTlteDMtM2M2cM4AAtoC
Moodle PostScript Code Injection
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 13.9
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1wZ201LWNyNjItcHJ4cc4AAtoJ
Moodle Arbitrary file read when importing lesson questions
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS13d3Y3LWg0Nzctd3J2N84AAtoF
Moodle Stored XSS and blind SSRF possible via SCORM track details
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0yNDN2LTVwZmYtcXFmas4AAtoG
Moodle Open redirect risk in mobile auto-login feature
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1xNnZ3LTI3YzYtanY5Y84AArJl
Moodle Persistent Cross-site Scripting (XSS)
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS0zanJqLXg2Y2otOTdjcM4AAqu3
Moodle contains CSRF vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nMzljLW1jY2Ytcnhqds4AAquv
Moodle Insecure direct object reference (IDOR) in a calendar web service
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1jN2pqLXZmbXItajltas4AAo7b
Moodle command execution vulnerability exists in the default legacy spellchecker plugin
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nNW01LWo0OGctZnIyNM4AAo2f
Moodle Cross Site Scripting (XSS)
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oN2g2LWZ3cHYtZ2d2eM4AAn2C
Moodle contains Stored XSS via ID number user profile field
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1ncmo0LWc1N2MtOXhtds4AAn1t
Moodle Bypass email verification secret when confirming account registration
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0ybTcyLW01Y3ctM2c5aM4AAn1g
Missing permission check in Moodle
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS14aGZ4LXJtOHEtYzN4ds4AAnXr
Moodle Vulnerable to Reflected Cross-site Scripting
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS0yanJtLWd3dzctd2NoMs4AAnXz
Moodle Arbitrary PHP code execution by site admins via Shibboleth configuration
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.2
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tbTczLTg2ZjktNXg1Y84AAnXv
Moodle Grade information disclosure in grade's external fetch functions
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1jM2o2LTMzcjQtODlxM84AAnXg
Moodle Client side denial of service via personal message
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oOG00LWgzODUtcWhxds4AAnXt
Moodle Cross-site Scripting
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tZ2ZwLXFjZjItcHczbc4AAmyM
Moodle stored Cross-site Scripting (XSS)
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00dzRqLTk1MzMtODJxZ84AAmyf
Moodle Cross-site Scripting (XSS)
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS02NnhwLTI4Y3EtbXJmMs4AAmyb
Moodle Denial of Service
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS1mNXI4LTdoNGYtanI5eM4AAmyP
Moodle incorrect access control
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: about 2 years ago
High
GSA_kwCzR0hTQS12cjZ2LWc5NnAtY2pjM84AAkvA
Moodle vulnerable to RCE
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1ydjYyLTZmNTYtajgzd84AAkF6
Moodle Oauth 2 Insufficiently Protects Against Compromise
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05amY2LXdxMzQtZmc5d84AAj89
Moodle XSS Vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0zeGg1LTV2NXYtbWZnbc4AAj8g
Moodle reflected Cross-site Scripting (XSS)
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tOThxLXE1OXAtcjlmds4AAj8T
Moodle open redirect vulnerability
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS03NzRxLXdmY3AtdmMycc4AAj8n
Moodle Email media URL tokens were not checking for user status
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nOW0yLWMyeDUtZnIyds4AAjM2
Moodle does not revoke role capabilities correctly
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oN3hwLTdmanAtZ2hoY84AAhhD
moodle Improper Access Control
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05MnE1LTJoNzYtdmdtas4AAhhP
moodle Improper Access Control
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0ybWc5LWh2NjktODk3eM4AAhhO
Moodle Ability to delete glossary entries that belong to another glossary
Ecosystems: packagist
Packages: moodle/moodle
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: about 2 years ago
Statistics
Advisories: 18,946
Packages: 8,441
Repositories: 6
Ecosystems: 12
Filter by Package
moodle/moodle 323 magento/community-edition 203 pimcore/pimcore 116 dolibarr/dolibarr 109 typo3/cms 102 phpmyadmin/phpmyadmin 92 microweber/microweber 91 drupal/core 91 silverstripe/framework 83 typo3/cms-core 77 drupal/drupal 76 thorsten/phpmyfaq 70 librenms/librenms 54 symfony/symfony 53 concrete5/concrete5 52 shopware/platform 48 baserproject/basercms 43 craftcms/cms 40 intelliants/subrion 40 showdoc/showdoc 40 nilsteampassnet/teampass 37 froxlor/froxlor 37 shopware/core 36 snipe/snipe-it 32 shopware/shopware 31 mautic/core 30 getgrav/grav 29 centreon/centreon 27 prestashop/prestashop 26 magento/core 24 mediawiki/core 24 remdex/livehelperchat 23 pocketmine/pocketmine-mp 23 simplesamlphp/simplesamlphp 23 grumpydictator/firefly-iii 22 getkirby/cms 22 contao/core-bundle 21 tribalsystems/zenario 20 laravel/framework 19 contao/contao 18 forkcms/forkcms 18 cockpit-hq/cockpit 18 francoisjacquet/rosariosis 17 symfony/security 17 genix/cms 17 cakephp/cakephp 17 ezsystems/ezpublish-kernel 17 topthink/framework 17 yetiforce/yetiforce-crm 16 smarty/smarty 15 openmage/magento-lts 15 ec-cube/ec-cube 14 typo3/cms-backend 14 symfony/security-http 14 zendframework/zendframework1 14 silverstripe/cms 14 phpmailer/phpmailer 14 codeigniter4/framework 13 lavalite/cms 13 october/system 13 elefant/cms 13 bolt/bolt 13 impresscms/impresscms 13 phpbb/phpbb 12 phpmyfaq/phpmyfaq 12 studio-42/elfinder 12 dompdf/dompdf 12 feehi/feehicms 11 sylius/sylius 11 ezsystems/ezplatform-kernel 11 feehi/cms 11 zendframework/zendframework 11 wwbn/avideo 11 pagekit/pagekit 10 opencart/opencart 10 ezsystems/ezpublish-legacy 10 admidio/admidio 10 wallabag/wallabag 10 pimcore/admin-ui-classic-bundle 10 nukeviet/nukeviet 10 concrete5/core 9 contao/core 9 alextselegidis/easyappointments 9 ssddanbrown/bookstack 9 kevinpapst/kimai2 9 october/october 9 funadmin/funadmin 9 tinymce/tinymce 9 TinyMCE 9 tinymce 9 silverstripe/admin 8 sulu/sulu 8 codiad/codiad 8 gilacms/gila 8 croogo/croogo 8 yiisoft/yii2 8 pimcore/customer-management-framework-bundle 8 october/cms 8 facturascripts/facturascripts 8 silverstripe/graphql 8 symfony/http-foundation 7 pterodactyl/panel 7 mantisbt/mantisbt 7 flarum/core 7 october/backend 7 statamic/cms 7 passbolt/passbolt_api 7 wpglobus/wpglobus 7 ezsystems/ezplatform-admin-ui 7 directmailteam/direct-mail 6 composer/composer 6 symfony/http-kernel 6 bagisto/bagisto 6 guzzlehttp/guzzle 6 gleez/cms 6 dweeves/magmi 6 nystudio107/craft-seomatic 6 yourls/yourls 6 oro/platform 6 backdrop/backdrop 6 zoujingli/thinkadmin 6 in2code/femanager 6 yiisoft/yii2-dev 6 billz/raspap-webgui 5 phpxmlrpc/phpxmlrpc 5 typo3/cms-install 5 symfony/security-core 5 elgg/elgg 5 thinkcmf/thinkcmf 5 phpseclib/phpseclib 5 vrana/adminer 5 automad/automad 5 silverstripe/assets 5 simplesamlphp/saml2 5 neos/neos 5 neos/flow 5 illuminate/database 5 cachethq/cachet 5 ibexa/core 5 anchorcms/anchor-cms 5 phpservermon/phpservermon 5 pear/archive_tar 5 codeigniter/framework 5 gugoan/economizzer 5 bottelet/flarepoint 5 evolutioncms/evolution 4 adodb/adodb-php 4 bytefury/crater 4 codeigniter4/shield 4 bref/bref 4 pyrocms/pyrocms 4 typo3/html-sanitizer 4 friendsofsymfony/user-bundle 4 appwrite/server-ce 4 kimai/kimai 4 spatie/browsershot 4 notrinos/notrinos-erp 4 symfony/security-bundle 4 wp-premium/gravityforms 4 wintercms/winter 4 shopware/storefront 4 sylius/resource-bundle 4 modx/revolution 4 typo3/cms-frontend 4 woocommerce/woocommerce 4 ezsystems/ezplatform 4 oro/commerce 4 idno/known 4 magento/product-community-edition 4 reportico-web/reportico 3 froala/wysiwyg-editor 3 pixelfed/pixelfed 3 amphp/http-client 3 enhavo/enhavo-app 3 symfony/form 3 prestashop/productcomments 3 ckeditor4 3 qcubed/qcubed 3 facade/ignition 3 quickapps/cms 3 phenx/php-svg-lib 3 yiisoft/yii 3 joomla/joomla-cms 3 joomla/framework 3 phpoffice/phpspreadsheet 3 shopxo/shopxo 3 apache-solr-for-typo3/solr 3 swiftmailer/swiftmailer 3 processwire/processwire 3 verot/class.upload.php 3 buddypress/buddypress 3 zendframework/zendservice-api 3 zendframework/zendservice-windowsazure 3 zendframework/zendservice-technorati 3 limesurvey/limesurvey 3 bbpress/bbpress 3 zendframework/zendservice-slideshare 3 zendframework/zendservice-nirvanix 3 tecnickcom/tcpdf 3 artesaos/seotools 3