Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

KEV

Categories

All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other

Tag groups

All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15

Popular tags (Top 40)

Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337

Filtering: Tag: moodle Clear

ID	Title	Severity	Tags	Detected
CVE-2022-50943	Cross-Site Scripting (XSS) in moodle (CVE-2022-50943) cross-site scripting in moodle (CVE-2022-50943). Risk of unauthorized operations or information disclosure.	Medium	PHP JavaScript Cross-Site Scripting Cwe 79 +1	1 month ago
CVE-2017-15110	Information Disclosure in moodle (CVE-2017-15110) vulnerability in moodle (CVE-2017-15110). Risk of unauthorized operations or information disclosure.	Medium	Cwe 200 Moodle	8 years ago
CVE-2017-12157	Information Disclosure in moodle (CVE-2017-12157) vulnerability in moodle (CVE-2017-12157). Risk of unauthorized operations or information disclosure.	Medium	Cwe 200 Moodle	8 years ago
CVE-2017-12156	Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback. Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.	Medium	Cross-Site Scripting Cwe 79 Moodle	8 years ago
CVE-2017-7532	In Moodle 3.x, course creators are able to change system default settings for courses. In Moodle 3.x, course creators are able to change system default settings for courses.	Medium	Cwe 269 Moodle	8 years ago
CVE-2017-7531	In Moodle 3.3, the course overview block reveals activities in hidden courses. In Moodle 3.3, the course overview block reveals activities in hidden courses.	Medium	Cwe 200 Moodle	8 years ago
CVE-2017-2642	Moodle 3.x has user fullname disclosure on the user preferences page. Moodle 3.x has user fullname disclosure on the user preferences page.	Medium	Cwe 200 Moodle	8 years ago
CVE-2017-7491	Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-7491) vulnerability in csrf (CVE-2017-7491). Risk of unauthorized operations or information disclosure.	Medium	Cross-Site Request Forgery Cwe 352 Moodle	9 years ago
CVE-2017-7490	Vulnerability in moodle (CVE-2017-7490) vulnerability in moodle (CVE-2017-7490). Risk of unauthorized operations or information disclosure.	Medium	Cwe 668 Moodle	9 years ago
CVE-2017-7489	Privilege Escalation in moodle (CVE-2017-7489) vulnerability in moodle (CVE-2017-7489). Risk of unauthorized operations or information disclosure.	Medium	Cwe 269 Moodle	9 years ago
CVE-2016-3734	Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-3734) vulnerability in csrf (CVE-2016-3734). Successful exploitation can lead to full system takeover.	High	PHP Cross-Site Request Forgery Cwe 352 Moodle	9 years ago
CVE-2016-3733	Vulnerability in moodle (CVE-2016-3733) vulnerability in moodle (CVE-2016-3733). Risk of unauthorized operations or information disclosure.	Medium	Cwe 284 Moodle	9 years ago
CVE-2016-3732	Information Disclosure in moodle (CVE-2016-3732) vulnerability in moodle (CVE-2016-3732). Risk of unauthorized operations or information disclosure.	Medium	Cwe 200 Moodle	9 years ago
CVE-2016-3731	Information Disclosure in moodle (CVE-2016-3731) vulnerability in moodle (CVE-2016-3731). Risk of unauthorized operations or information disclosure.	Medium	Cwe 200 Moodle	9 years ago
CVE-2016-3729	Vulnerability in moodle (CVE-2016-3729) vulnerability in moodle (CVE-2016-3729). Data can be tampered with by attackers.	Medium	Cwe 284 Moodle	9 years ago
CVE-2017-7298	Cross-Site Scripting (XSS) in moodle (CVE-2017-7298) cross-site scripting in moodle (CVE-2017-7298). Risk of unauthorized operations or information disclosure.	Medium	Cross-Site Scripting Cwe 79 Moodle	9 years ago
CVE-2017-2645	In Moodle 3.x, XSS can occur via attachments to evidence of prior learning. In Moodle 3.x, XSS can occur via attachments to evidence of prior learning.	Medium	Cross-Site Scripting Cwe 79 Moodle	9 years ago
CVE-2017-2644	In Moodle 3.x, XSS can occur via evidence of prior learning. In Moodle 3.x, XSS can occur via evidence of prior learning.	Medium	Cross-Site Scripting Cwe 79 Moodle	9 years ago
CVE-2017-2643	In Moodle 3.2.x, global search displays user names for unauthenticated users. In Moodle 3.2.x, global search displays user names for unauthenticated users.	Medium	Cwe 200 Moodle	9 years ago
CVE-2017-2641	In Moodle 2.x and 3.x, SQL injection can occur via user preferences. In Moodle 2.x and 3.x, SQL injection can occur via user preferences.	Critical	SQL Injection Cwe 89 Moodle	9 years ago
CVE-2017-2578	In Moodle 3.x, there is XSS in the assignment submission page. In Moodle 3.x, there is XSS in the assignment submission page.	Medium	Cross-Site Scripting Cwe 79 Moodle	9 years ago
CVE-2017-2576	In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums. In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums.	Medium	Cwe 20 Moodle	9 years ago
CVE-2016-8644	In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context. In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context.	Medium	Cwe 264 Moodle	9 years ago
CVE-2016-8643	In Moodle 2.x and 3.x, non-admin site managers may accidentally edit admins via web services. In Moodle 2.x and 3.x, non-admin site managers may accidentally edit admins via web services.	Medium	Cwe 284 Moodle	9 years ago
CVE-2016-8642	In Moodle 2.x and 3.x, the question engine allows access to files that should not be available. In Moodle 2.x and 3.x, the question engine allows access to files that should not be available.	Medium	Cwe 284 Moodle	9 years ago
CVE-2016-7038	Vulnerability in moodle (CVE-2016-7038) vulnerability in moodle (CVE-2016-7038). Risk of unauthorized operations or information disclosure.	High	Cwe 640 Moodle	9 years ago
CVE-2016-5014	Information Disclosure in moodle (CVE-2016-5014) vulnerability in moodle (CVE-2016-5014). Risk of unauthorized operations or information disclosure.	Medium	Cwe 200 Moodle	9 years ago
CVE-2016-5013	Vulnerability in moodle (CVE-2016-5013) vulnerability in moodle (CVE-2016-5013). Risk of unauthorized operations or information disclosure.	Medium	Cwe 74 Moodle	9 years ago
CVE-2016-5012	In Moodle 3.x, glossary search displays entries without checking user permissions to view them. In Moodle 3.x, glossary search displays entries without checking user permissions to view them.	Medium	Cwe 200 Moodle	9 years ago

Vulnerabilities

🍪 About cookies