packagist
468,797 packages · packagist.org
Security Advisories for https://github.com/moodle/moodle in packagist Clear Filters
Moderate
3 months ago
Moodle Session Fixation allows unauthenticated users to hijack sessions via sesskey parameter
packagist
moodle/moodle
High
5 months ago
Moodle has an authenticated remote code execution risk in the Moodle LMS Dropbox repository
packagist
moodle/moodle
Low
5 months ago
Moodle has a CSRF risk in user tours manager that allows tour duplication
packagist
moodle/moodle
Low
5 months ago
Moodle has a CSRF risk in Brickfield tool's analysis request action
packagist
moodle/moodle
Moderate
5 months ago
Moodle allows IDOR in RSS block, which allows access to additional RSS feeds
packagist
moodle/moodle
High
5 months ago
Moodle has an authenticated remote code execution risk in the Moodle LMS EQUELLA repository
packagist
moodle/moodle
Moderate
5 months ago
Moodle has an IDOR in messaging web service which allows access to some user details
packagist
moodle/moodle
Moderate
5 months ago
Moodle has reflected Cross-site Scripting risk in policy tool
packagist
moodle/moodle
Moderate
5 months ago
Moodle has an IDOR in web service which allows users enrolled in a course to access some details of other users
packagist
moodle/moodle
Low
5 months ago
Moodle's mod_data edit/delete pages pass CSRF token in GET parameter
packagist
moodle/moodle
Moderate
5 months ago
Moodle reveals student identities through assignment submissions search on anonymous submissions
packagist
moodle/moodle
Moderate
5 months ago
Moodle self enrollment available before completing second factor with MFA enabled
packagist
moodle/moodle
High
7 months ago
Moodle has a SQL injection risk in course search module list filter
packagist
moodle/moodle
Moderate
11 months ago
Moodle allows users to retrieve information they did not have permission to access
packagist
moodle/moodle
Moderate
11 months ago
Moodle Lesson activity password bypass through PHP loose comparison
packagist
moodle/moodle
Moderate
over 1 year ago
Moodle HTTP authorization header is preserved between "emulated redirects"
packagist
moodle/moodle
Moderate
over 1 year ago
Moodle BigBlueButton web service leaks meeting joining information
packagist
moodle/moodle
Moderate
over 1 year ago
Moodle uses the same key for QR login and auto-login
packagist
moodle/moodle
High
over 1 year ago
Moodle Authenticated LFI risk in some misconfigured shared hosting environments
packagist
moodle/moodle
Moderate
over 1 year ago
Moodle Unsanitized HTML in site log for config_log_created
packagist
moodle/moodle
High
over 1 year ago
Moodle CSRF risk in admin preset tool management of presets
packagist
moodle/moodle
Moderate
almost 2 years ago
Moodle Exposure of Sensitive Information to an Unauthorized Actor vulnerability
packagist
moodle/moodle
Moderate
almost 2 years ago
Moodle Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability
packagist
moodle/moodle
Low
almost 2 years ago
Moodle Exposure of Sensitive Information to an Unauthorized Actor vulnerability
packagist
moodle/moodle
Moderate
over 2 years ago
Moodle External Control of File Name or Path vulnerability
packagist
moodle/moodle
Moderate
over 2 years ago
Moodle may allow students to bypass sequential navigation during a quiz attempt
packagist
moodle/moodle
Moderate
over 2 years ago
Moodle may display roles to users who don't have access to them
packagist
moodle/moodle
Moderate
over 2 years ago
Moodle may allow authenticated users to enumerate other user's names via learning plans page
packagist
moodle/moodle
Moderate
over 2 years ago
Moodle vulnerable to Cross-site Scripting when algebra filter enabled but not functional
packagist
moodle/moodle
Critical
over 2 years ago
Moodle's Mustache pix helper contained a potential Mustache injection risk if combined with user input
packagist
moodle/moodle
Moderate
over 2 years ago
Moodle may allow teachers to access the names of users they could not otherwise access
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle contains Stored XSS via ID number user profile field
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle Vulnerable to Reflected Cross-site Scripting
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle does not revoke role capabilities correctly
packagist
moodle/moodle
Moderate
over 3 years ago
External Control of Assumed-Immutable Web Parameter in moodle
packagist
moodle/moodle
High
over 3 years ago
Moodle XML import of ddwtos could lead to intentional remote code execution
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle Stored HTML in assignment submission comments allowed links to be opened directly
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle Secure layout contained an insecure link in Boost theme
packagist
moodle/moodle
High
over 3 years ago
Moodle Users could elevate their role when accessing the LTI tool on a provider site
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle vulnerable to XSS via bundled spikephpcoverage library
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle does not properly restrict access to category and course data
packagist
moodle/moodle
Moderate
over 3 years ago
Moodle Double-Caches Content, Potentially Writing to a File System's Tmp Directory
packagist
moodle/moodle
Filter by Severity
Filter by Package
moodle/moodle
417
magento/community-edition
297
typo3/cms
184
pimcore/pimcore
120
dolibarr/dolibarr
117
phpmyadmin/phpmyadmin
107
typo3/cms-core
107
microweber/microweber
103
drupal/core
98
silverstripe/framework
91
librenms/librenms
83
drupal/drupal
75
thorsten/phpmyfaq
73
concrete5/concrete5
67
magento/project-community-edition
60
symfony/symfony
59
shopware/platform
58
craftcms/cms
53
mautic/core
48
baserproject/basercms
47
shopware/core
46
nilsteampassnet/teampass
42
showdoc/showdoc
41
mantisbt/mantisbt
41
froxlor/froxlor
40
intelliants/subrion
40
snipe/snipe-it
38
zendframework/zendframework1
32
shopware/shopware
31
getgrav/grav
30
mediawiki/core
28
contao/core-bundle
27
centreon/centreon
27
prestashop/prestashop
27
pocketmine/pocketmine-mp
25
getkirby/cms
24
magento/core
23
simplesamlphp/simplesamlphp
23
remdex/livehelperchat
23
grumpydictator/firefly-iii
23
laravel/framework
23
tribalsystems/zenario
22
contao/contao
22
zendframework/zendframework
22
phpoffice/phpspreadsheet
22
funadmin/funadmin
20
cockpit-hq/cockpit
20
typo3/cms-backend
19
topthink/framework
19
forkcms/forkcms
18
genix/cms
18
openmage/magento-lts
17
cakephp/cakephp
17
opencart/opencart
17
francoisjacquet/rosariosis
17
ezsystems/ezpublish-kernel
17
yetiforce/yetiforce-crm
17
phpbb/phpbb
16
october/system
16
smarty/smarty
15
ec-cube/ec-cube
15
pimcore/admin-ui-classic-bundle
15
bolt/bolt
15
feehi/cms
14
yeswiki/yeswiki
14
modx/revolution
14
codeigniter4/framework
14
phpmailer/phpmailer
14
dompdf/dompdf
14
studio-42/elfinder
13
sylius/sylius
13
elefant/cms
13
impresscms/impresscms
13
silverstripe/cms
13
symfony/security
13
lavalite/cms
13
phpmyfaq/phpmyfaq
13
alextselegidis/easyappointments
13
admidio/admidio
13
wallabag/wallabag
12
wwbn/avideo
12
tinymce/tinymce
11
TinyMCE
11
yiisoft/yii2
11
leantime/leantime
11
feehi/feehicms
11
pagekit/pagekit
11
ezsystems/ezplatform-kernel
11
nukeviet/nukeviet
11
sulu/sulu
11
tinymce
11
symfony/security-http
11
ssddanbrown/bookstack
10
spatie/browsershot
10
october/october
10
ezsystems/ezpublish-legacy
10
twig/twig
9
kevinpapst/kimai2
9
in2code/powermail
9
symfony/http-foundation
9
in2code/femanager
9
pterodactyl/panel
9
statamic/cms
9
billz/raspap-webgui
9
pimcore/customer-management-framework-bundle
9
ezsystems/ezplatform-admin-ui
9
croogo/croogo
9
concrete5/core
9
contao/core
9
gilacms/gila
8
directmailteam/direct-mail
8
silverstripe/admin
8
october/cms
8
silverstripe/graphql
8
flarum/core
8
composer/composer
8
facturascripts/facturascripts
8
starcitizentools/citizen-skin
8
codiad/codiad
8
joomla/joomla-cms
8
symfony/http-kernel
7
passbolt/passbolt_api
7
shopxo/shopxo
7
unopim/unopim
7
tecnickcom/tcpdf
7
wpglobus/wpglobus
7
october/backend
7
redaxo/source
7
simplesamlphp/saml2
7
backdrop/backdrop
7
vrana/adminer
7
adodb/adodb-php
6
phpseclib/phpseclib
6
dweeves/magmi
6
yiisoft/yii2-dev
6
gleez/cms
6
oro/platform
6
bagisto/bagisto
6
drupal/core-recommended
6
typo3/cms-install
6
zoujingli/thinkadmin
6
icecoder/icecoder
6
api-platform/core
6
nystudio107/craft-seomatic
6
pear/archive_tar
6
yourls/yourls
6
thinkcmf/thinkcmf
5
gugoan/economizzer
5
cachethq/cachet
5
typo3/flow
5
symfony/security-core
5
silverstripe/assets
5
juzaweb/cms
5
neos/flow
5
ibexa/core
5
getformwork/formwork
5
limesurvey/limesurvey
5
tcg/voyager
5
phpxmlrpc/phpxmlrpc
5
kimai/kimai
5
anchorcms/anchor-cms
5
phpservermon/phpservermon
5
neos/neos
5
guzzlehttp/guzzle
5
bottelet/flarepoint
5
ibexa/admin-ui
5
mautic/core-lib
5
elgg/elgg
5
woocommerce/woocommerce
5
dcat/laravel-admin
4
notrinos/notrinos-erp
4
reportico-web/reportico
4
evolutioncms/evolution
4
typo3/html-sanitizer
4
processwire/processwire
4
league/commonmark
4
moonshine/moonshine
4
auth0/wordpress
4
magento/product-community-edition
4
automad/automad
4
froala/wysiwyg-editor
4
drupal/ai
4
wp-premium/gravityforms
4
codeigniter/framework
4
enshrined/svg-sanitize
4
illuminate/database
4
pyrocms/pyrocms
4
flarum/framework
4
zendframework/zendopenid
4
bref/bref
4
ezyang/htmlpurifier
4
idno/known
4
pixelfed/pixelfed
4
appwrite/server-ce
4
ezsystems/ezplatform
4
sjbr/sr-feuser-register
4
codeigniter4/shield
4
oro/commerce
4
livewire/livewire
4
elmsln/haxcms
4
Filter by Repository
https://github.com/moodle/moodle
243
https://github.com/pimcore/pimcore
116
https://github.com/TYPO3/typo3
94
https://github.com/microweber/microweber
90
https://github.com/librenms/librenms
74
https://github.com/thorsten/phpmyfaq
69
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/mautic/mautic
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/concretecms/concretecms
44
https://github.com/shopware/platform
43
https://github.com/craftcms/cms
41
https://github.com/star7th/showdoc
39
https://github.com/mantisbt/mantisbt
38
https://github.com/magento/magento2
38
https://github.com/octobercms/october
36
https://github.com/shopware/shopware
35
https://github.com/snipe/snipe-it
30
https://github.com/contao/contao
30
https://github.com/baserproject/basercms
26
https://github.com/froxlor/froxlor
26
https://github.com/pmmp/PocketMine-MP
25
https://github.com/getgrav/grav
24
https://github.com/firefly-iii/firefly-iii
23
https://github.com/PrestaShop/PrestaShop
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/getkirby/kirby
22
https://github.com/laravel/framework
21
https://github.com/simplesamlphp/simplesamlphp
20
https://github.com/funadmin/funadmin
20
https://github.com/intelliants/subrion
19
https://github.com/TYPO3-CMS/core
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/OpenMage/magento-lts
17
https://github.com/liufee/cms
17
https://github.com/forkcms/forkcms
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/drupal/core
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/centreon/centreon
15
https://github.com/dompdf/dompdf
15
https://github.com/zendframework/zendframework
15
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/thorsten/phpMyFAQ
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/centreon/centreon-archived
12
https://github.com/modxcms/revolution
12
https://github.com/YesWiki/yeswiki
12
https://github.com/yiisoft/yii2
12
https://sourceforge.net/projects/phpmyadmin.sourceforge.net
12
https://github.com/smarty-php/smarty
12
https://github.com/codeigniter4/CodeIgniter4
12
https://github.com/top-think/framework
11
https://github.com/WWBN/AVideo
11
https://github.com/dolibarr/dolibarr
11
https://github.com/Studio-42/elFinder
11
https://github.com/Sylius/Sylius
11
https://github.com/sulu/sulu
11
https://github.com/cakephp/cakephp
11
https://github.com/tinymce/tinymce
11
https://github.com/Leantime/leantime
11
https://github.com/ezsystems/ezpublish-kernel
11
https://github.com/semplon/GeniXCMS
10
https://github.com/bolt/bolt
10
https://github.com/wallabag/wallabag
10
https://github.com/opencart/opencart
10
https://github.com/kevinpapst/kimai2
9
https://github.com/LavaLite/cms
9
https://github.com/neorazorx/facturascripts
9
https://github.com/alextselegidis/easyappointments
9
https://github.com/spatie/browsershot
9
https://github.com/pterodactyl/panel
9
https://github.com/francoisjacquet/rosariosis
8
https://github.com/flarum/framework
8
https://github.com/tecnickcom/TCPDF
8
https://github.com/croogo/croogo
8
https://github.com/admidio/admidio
8
https://github.com/pimcore/customer-data-framework
8
https://github.com/TribalSystems/Zenario
8
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
8
https://github.com/statamic/cms
8
https://github.com/twigphp/Twig
8
https://github.com/RaspAP/raspap-webgui
8
https://github.com/Froxlor/Froxlor
8
https://github.com/GilaCMS/gila
8
https://github.com/wintercms/winter
7
https://github.com/passbolt/passbolt_api
7
https://github.com/unopim/unopim
7
https://github.com/composer/composer
7
https://github.com/pagekit/pagekit
7
https://github.com/ezsystems/ezplatform-admin-ui
7
https://github.com/ezsystems/ezplatform-kernel
7
https://github.com/d4wner/Vulnerabilities-Report
7
https://github.com/Codiad/Codiad
7
https://github.com/phpseclib/phpseclib
6
https://github.com/LimeSurvey/LimeSurvey
6
https://github.com/gleez/cms
6
https://github.com/bookstackapp/bookstack
6
https://github.com/silverstripe/silverstripe-graphql
6
https://github.com/auth0/auth0-PHP
6
https://github.com/nystudio107/craft-seomatic
6
https://github.com/vrana/adminer
6
https://github.com/ezsystems/ezpublish-legacy
6
https://gitlab.com/francoisjacquet/rosariosis
6
https://github.com/ADOdb/ADOdb
6
https://github.com/ImpressCMS/impresscms
6
https://github.com/api-platform/core
6
https://github.com/guzzle/guzzle
6
https://github.com/oroinc/orocommerce
6
https://github.com/shopware5/shopware
5
https://github.com/dub-flow/vulnerability-research
5
https://github.com/gggeek/phpxmlrpc
5
https://github.com/jbroadway/elefant
5
https://github.com/backdrop/backdrop
5
https://github.com/Admidio/admidio
5
https://github.com/oroinc/platform
5
https://github.com/getformwork/formwork
5
https://github.com/nukeviet/nukeviet
5
https://github.com/in2code-de/femanager
5
https://github.com/zendframework/zf1
5
https://github.com/ibexa/core
5
https://github.com/thinkcmf/thinkcmf
5
https://github.com/contao/core
5
https://github.com/pear/Archive_Tar
5
https://github.com/Bottelet/DaybydayCRM
5
https://github.com/bagisto/bagisto
4
https://github.com/fiveai/Cachet
4
https://github.com/appwrite/appwrite
4
https://github.com/ibexa/admin-ui
4
https://github.com/pixelfed/pixelfed
4
https://github.com/phpservermon/phpservermon
4
https://github.com/reportico-web/reportico
4
https://github.com/froxlor/Froxlor
4
https://github.com/hieuminhnv/Zenario-CMS-last-version
4
https://github.com/kimai/kimai
4
https://github.com/yourls/yourls
4
https://github.com/codeigniter4/shield
4
https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs
4
https://github.com/TYPO3/html-sanitizer
4
https://github.com/ezsystems/ezplatform-richtext
4
https://github.com/livewire/livewire
4
https://github.com/Cockpit-HQ/Cockpit
4
https://github.com/ezsystems/ezplatform
4
https://github.com/zoujingli/ThinkAdmin
4
https://github.com/in2code-de/powermail
4
https://github.com/haxtheweb/issues
4
https://github.com/progprnv/CVE-Reports
4
https://github.com/oroinc/crm
4
https://github.com/Sylius/SyliusResourceBundle
4
https://github.com/BookStackApp/BookStack
4
https://github.com/crater-invoice/crater
4
https://github.com/brefphp/bref
4
https://github.com/silverstripe/silverstripe-admin
4
https://github.com/darylldoyle/svg-sanitizer
4
https://github.com/UniSharp/laravel-filemanager
3
https://github.com/qcubed/qcubed
3
https://github.com/jquery/jquery
3
https://github.com/nitsan-technologies/ns_backup
3
https://github.com/quickapps/cms
3
https://github.com/opensource-workshop/connect-cms
3
https://github.com/thephpleague/commonmark
3
https://github.com/github/advisory-database
3
https://github.com/orchidsoftware/platform
3
https://github.com/flarum/core
3
https://github.com/PrivateBin/PrivateBin
3
https://github.com/dd3x3r/enhavo
3
https://github.com/artesaos/seotools
3
https://github.com/phpbb/phpbb
3
https://github.com/belong2yourself/vulnerabilities
3
https://github.com/elgg/elgg
3
https://github.com/xjzzzxx/vulFound
3
https://github.com/TYPO3-Solr/ext-solr
3
https://github.com/phpbb/phpbb-app
3
https://github.com/thedevdojo/voyager
3
https://github.com/FriendsOfSymfony/FOSUserBundle
3
https://github.com/notrinos/notrinoserp
3
https://github.com/joomla/joomla-cms
3
https://github.com/concrete5/concrete5
3
https://github.com/Sylius/PayPalPlugin
3
https://github.com/facade/ignition
3
https://github.com/grokability/snipe-it
3
https://github.com/Rudloff/alltube
3
https://github.com/Cyber-Wo0dy/report
3
https://github.com/Athlon1600/php-proxy-app
3
https://github.com/uasoft-indonesia/badaso
3
https://github.com/verbb/formie
3
https://github.com/idno/known
3
https://github.com/ezsystems/ezplatform-http-cache
3
https://github.com/PrestaShop/productcomments
3
https://github.com/verbb/comments
3
https://github.com/liufee/feehicms
3
https://github.com/simplesamlphp/saml2
3
https://github.com/yiisoft/yii
3
https://github.com/redaxo/redaxo
3