Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moodle moodle 3.1.1 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2017-2578
In Moodle 3.x, there is XSS in the assignment submission page.
Moodle Moodle 3.1.0
Moodle Moodle 3.2.0
Moodle Moodle 3.1.2
Moodle Moodle 3.1.3
Moodle Moodle 3.1.1
6.1
CVSSv3
CVE-2017-2645
In Moodle 3.x, XSS can occur via attachments to evidence of prior learning.
Moodle Moodle 3.1.0
Moodle Moodle 3.2.0
Moodle Moodle 3.1.2
Moodle Moodle 3.1.4
Moodle Moodle 3.1.3
Moodle Moodle 3.2.1
Moodle Moodle 3.1.1
6.1
CVSSv3
CVE-2017-2644
In Moodle 3.x, XSS can occur via evidence of prior learning.
Moodle Moodle 3.1.0
Moodle Moodle 3.2.0
Moodle Moodle 3.1.2
Moodle Moodle 3.1.4
Moodle Moodle 3.1.3
Moodle Moodle 3.2.1
Moodle Moodle 3.1.1
6.5
CVSSv3
CVE-2017-2642
Moodle 3.x has user fullname disclosure on the user preferences page.
Moodle Moodle 3.1.0
Moodle Moodle 3.2.0
Moodle Moodle 3.3.0
Moodle Moodle 3.2.2
Moodle Moodle 3.1.5
Moodle Moodle 3.1.2
Moodle Moodle 3.1.4
Moodle Moodle 3.1.6
Moodle Moodle 3.1.3
Moodle Moodle 3.2.3
Moodle Moodle 3.2.1
Moodle Moodle 3.3.1
Moodle Moodle 3.1.1
6.5
CVSSv3
CVE-2017-7532
In Moodle 3.x, course creators are able to change system default settings for courses.
Moodle Moodle 3.1.0
Moodle Moodle 3.2.0
Moodle Moodle 3.3.0
Moodle Moodle 3.2.2
Moodle Moodle 3.1.5
Moodle Moodle 3.1.2
Moodle Moodle 3.1.4
Moodle Moodle 3.1.6
Moodle Moodle 3.1.3
Moodle Moodle 3.2.3
Moodle Moodle 3.2.1
Moodle Moodle 3.3.1
Moodle Moodle 3.1.1
4.3
CVSSv3
CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access.
Moodle Moodle 3.1.0
Moodle Moodle 3.0.7
Moodle Moodle 3.2.0
Moodle Moodle 3.0.6
Moodle Moodle 3.3.0
Moodle Moodle 3.2.2
Moodle Moodle 3.1.5
Moodle Moodle 3.0.9
Moodle Moodle 3.0.5
Moodle Moodle 3.0.4
Moodle Moodle 3.2.4
Moodle Moodle 3.0.2
Moodle Moodle 3.0.0
Moodle Moodle 3.1.2
Moodle Moodle 3.1.4
Moodle Moodle 3.0.1
Moodle Moodle 3.1.6
Moodle Moodle 3.0.10
Moodle Moodle 3.1.3
Moodle Moodle 3.1.7
Moodle Moodle 3.2.3
Moodle Moodle 3.0.3
6.1
CVSSv3
CVE-2017-12156
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
Moodle Moodle 3.1.0
Moodle Moodle 3.0.7
Moodle Moodle 3.2.0
Moodle Moodle 3.0.6
Moodle Moodle 3.3.0
Moodle Moodle 3.2.2
Moodle Moodle 3.1.5
Moodle Moodle 3.0.9
Moodle Moodle 3.0.5
Moodle Moodle 3.0.4
Moodle Moodle 3.2.5
Moodle Moodle 3.2.4
Moodle Moodle 3.0.2
Moodle Moodle 3.0.0
Moodle Moodle 3.1.2
Moodle Moodle 3.1.4
Moodle Moodle 3.0.1
Moodle Moodle 3.3.2
Moodle Moodle 3.1.6
Moodle Moodle 3.0.10
Moodle Moodle 3.1.3
Moodle Moodle 3.1.7
7.3
CVSSv3
CVE-2016-7038
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.
Moodle Moodle 2.9.6
Moodle Moodle 2.8.3
Moodle Moodle 2.8.7
Moodle Moodle 2.9.4
Moodle Moodle 3.1.0
Moodle Moodle 2.8.9
Moodle Moodle 2.8.10
Moodle Moodle 2.8.4
Moodle Moodle 3.0.5
Moodle Moodle 2.8.6
Moodle Moodle 3.0.4
Moodle Moodle 3.0.2
Moodle Moodle 2.8.12
Moodle Moodle 2.9.7
Moodle Moodle 3.0.1
Moodle Moodle 2.8.8
Moodle Moodle 3.0.0
Moodle Moodle 2.9.1
Moodle Moodle 2.8.1
Moodle Moodle 2.9.5
Moodle Moodle 2.8.11
Moodle Moodle 2.8.5
4.3
CVSSv3
CVE-2016-8643
In Moodle 2.x and 3.x, non-admin site managers may accidentally edit admins via web services.
Moodle Moodle 2.9.6
Moodle Moodle 2.8.3
Moodle Moodle 2.8.7
Moodle Moodle 2.9.4
Moodle Moodle 3.1.0
Moodle Moodle 3.0.6
Moodle Moodle 2.8.9
Moodle Moodle 2.8.10
Moodle Moodle 2.8.4
Moodle Moodle 3.0.5
Moodle Moodle 2.8.6
Moodle Moodle 3.0.4
Moodle Moodle 3.0.2
Moodle Moodle 2.8.12
Moodle Moodle 3.1.2
Moodle Moodle 2.9.7
Moodle Moodle 3.0.1
Moodle Moodle 2.8.8
Moodle Moodle 3.0.0
Moodle Moodle 2.9.1
Moodle Moodle 2.8.1
Moodle Moodle 2.9.5
5.3
CVSSv3
CVE-2016-8642
In Moodle 2.x and 3.x, the question engine allows access to files that should not be available.
Moodle Moodle 2.9.6
Moodle Moodle 2.8.3
Moodle Moodle 2.8.7
Moodle Moodle 2.9.4
Moodle Moodle 3.1.0
Moodle Moodle 3.0.6
Moodle Moodle 2.8.9
Moodle Moodle 2.8.10
Moodle Moodle 2.8.4
Moodle Moodle 3.0.5
Moodle Moodle 2.8.6
Moodle Moodle 3.0.4
Moodle Moodle 3.0.2
Moodle Moodle 2.8.12
Moodle Moodle 3.1.2
Moodle Moodle 2.9.7
Moodle Moodle 3.0.1
Moodle Moodle 2.8.8
Moodle Moodle 3.0.0
Moodle Moodle 2.9.1
Moodle Moodle 2.8.1
Moodle Moodle 2.9.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »