Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moodle moodle 3.1.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2016-5012
In Moodle 3.x, glossary search displays entries without checking user permissions to view them.
Moodle Moodle 3.1.0
4
CVSSv2
CVE-2016-8643
In Moodle 2.x and 3.x, non-admin site managers may accidentally edit admins via web services.
Moodle Moodle 2.9.5
Moodle Moodle 2.9.4
Moodle Moodle 2.9.3
Moodle Moodle 2.9.1
Moodle Moodle 2.8.8
Moodle Moodle 2.8.9
Moodle Moodle 2.8.10
Moodle Moodle
Moodle Moodle 3.0.5
Moodle Moodle 3.0.4
Moodle Moodle 3.0.3
Moodle Moodle 3.0.0
Moodle Moodle 2.8.0
Moodle Moodle 2.8.1
Moodle Moodle 2.8.2
Moodle Moodle 2.8.3
Moodle Moodle 3.1.2
Moodle Moodle 3.1.0
Moodle Moodle 3.0.2
Moodle Moodle 2.9.7
Moodle Moodle 2.9.0
Moodle Moodle 2.8.11
5
CVSSv2
CVE-2016-8644
In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context.
Moodle Moodle 3.1.2
Moodle Moodle 3.1.1
Moodle Moodle 3.1.0
Moodle Moodle 3.0.6
Moodle Moodle 2.9.1
Moodle Moodle 2.9.2
Moodle Moodle 2.9.0
Moodle Moodle 2.8.12
Moodle Moodle 3.0.1
Moodle Moodle 3.0.2
Moodle Moodle 2.9.8
Moodle Moodle 2.9.7
Moodle Moodle 2.8.4
Moodle Moodle 2.8.5
Moodle Moodle 2.8.6
Moodle Moodle 2.8.7
Moodle Moodle 3.0.4
Moodle Moodle 3.0.0
Moodle Moodle 2.9.6
Moodle Moodle 2.9.4
Moodle Moodle 2.8.0
Moodle Moodle 2.8.2
5
CVSSv2
CVE-2016-7038
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.
Moodle Moodle 2.9.7
Moodle Moodle 2.9.6
Moodle Moodle 2.9.5
Moodle Moodle 2.9.4
Moodle Moodle 2.9.3
Moodle Moodle 2.8.7
Moodle Moodle 2.8.8
Moodle Moodle 2.8.9
Moodle Moodle 2.8.10
Moodle Moodle 3.1.1
Moodle Moodle 3.1.0
Moodle Moodle 3.0.5
Moodle Moodle 3.0.4
Moodle Moodle 2.8.11
Moodle Moodle 2.8.0
Moodle Moodle 2.8.1
Moodle Moodle 2.8.2
Moodle Moodle 3.0.0
Moodle Moodle 3.0.2
Moodle Moodle 2.9.2
Moodle Moodle 2.8.12
Moodle Moodle 2.8.3
5
CVSSv2
CVE-2017-2576
In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums.
Moodle Moodle 3.1.1
Moodle Moodle 3.1.0
Moodle Moodle 3.0.6
Moodle Moodle 3.0.5
Moodle Moodle 2.9.2
Moodle Moodle 2.9.0
Moodle Moodle 2.8.12
Moodle Moodle 2.8.11
Moodle Moodle 3.0.2
Moodle Moodle 2.9.9
Moodle Moodle 2.9.8
Moodle Moodle 2.9.7
Moodle Moodle 2.9.6
Moodle Moodle 2.8.4
Moodle Moodle 2.8.5
Moodle Moodle 2.8.6
Moodle Moodle 2.8.7
Moodle Moodle 3.0.7
Moodle Moodle 3.2.0
Moodle Moodle 3.0.3
Moodle Moodle 3.0.1
Moodle Moodle 2.9.4
5.8
CVSSv2
CVE-2016-5014
In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course.
Moodle Moodle 3.1.0
Moodle Moodle 3.0.4
Moodle Moodle 2.8.0
Moodle Moodle 2.8.1
Moodle Moodle 2.8.2
Moodle Moodle 2.8.3
Moodle Moodle 2.9.5
Moodle Moodle 2.9.4
Moodle Moodle 2.9.3
Moodle Moodle 2.9.2
Moodle Moodle 2.8.8
Moodle Moodle 2.8.9
Moodle Moodle 2.8.10
Moodle Moodle 3.0.2
Moodle Moodle 3.0.0
Moodle Moodle 2.9.0
Moodle Moodle 2.8.11
Moodle Moodle 2.8.4
Moodle Moodle 2.8.6
Moodle Moodle 3.0.3
Moodle Moodle 3.0.1
Moodle Moodle 2.9.6
5
CVSSv2
CVE-2016-8642
In Moodle 2.x and 3.x, the question engine allows access to files that should not be available.
Moodle Moodle 3.0.2
Moodle Moodle 2.9.8
Moodle Moodle 2.9.7
Moodle Moodle 2.9.6
Moodle Moodle 2.8.5
Moodle Moodle 2.8.6
Moodle Moodle 2.8.7
Moodle Moodle 2.8.8
Moodle Moodle 3.1.1
Moodle Moodle 3.1.0
Moodle Moodle 3.0.6
Moodle Moodle 3.0.5
Moodle Moodle 2.9.2
Moodle Moodle 2.9.0
Moodle Moodle 2.8.12
Moodle Moodle 2.8.11
Moodle Moodle 2.8.0
Moodle Moodle 3.1.2
Moodle Moodle 3.0.4
Moodle Moodle 3.0.0
Moodle Moodle 2.9.4
Moodle Moodle 2.9.1
5.8
CVSSv2
CVE-2016-5013
In Moodle 2.x and 3.x, text injection can occur in email headers, potentially leading to outbound spam.
Moodle Moodle 3.0.4
Moodle Moodle 3.0.3
Moodle Moodle 3.0.0
Moodle Moodle 3.0.1
Moodle Moodle 2.8.5
Moodle Moodle 2.8.6
Moodle Moodle 2.8.7
Moodle Moodle 2.8.8
Moodle Moodle 2.9.2
Moodle Moodle 2.9.0
Moodle Moodle 2.8.12
Moodle Moodle 2.8.11
Moodle Moodle 2.9.5
Moodle Moodle 2.9.4
Moodle Moodle 2.9.1
Moodle Moodle 2.8.0
Moodle Moodle 2.8.2
Moodle Moodle 2.8.4
Moodle Moodle 2.8.9
Moodle Moodle
Moodle Moodle 2.9.6
Moodle Moodle 3.1.0
4.3
CVSSv2
CVE-2017-2578
In Moodle 3.x, there is XSS in the assignment submission page.
Moodle Moodle 3.2.0
Moodle Moodle 3.1.0
Moodle Moodle 3.1.3
Moodle Moodle 3.1.1
Moodle Moodle 3.1.2
4.3
CVSSv2
CVE-2013-7341
Multiple cross-site scripting (XSS) vulnerabilities in Flowplayer Flash prior to 3.2.17, as used in Moodle up to and including 2.3.11, 2.4.x prior to 2.4.9, 2.5.x prior to 2.5.5, and 2.6.x prior to 2.6.2, allow remote malicious users to inject arbitrary web script or HTML by (1) ...
Moodle Moodle 2.0.3
Moodle Moodle 2.0.4
Moodle Moodle 2.0.5
Moodle Moodle 2.0.6
Moodle Moodle 2.0.7
Moodle Moodle 2.1.9
Moodle Moodle 2.2.0
Moodle Moodle 2.2.1
Moodle Moodle 2.2.10
Flowplayer Flowplayer Flash 3.2.12
Flowplayer Flowplayer Flash 3.2.11
Flowplayer Flowplayer Flash 3.2.10
Flowplayer Flowplayer Flash 3.2.9
Flowplayer Flowplayer Flash 3.1.0
Flowplayer Flowplayer Flash 3.1.4
Flowplayer Flowplayer Flash 3.0.6
Flowplayer Flowplayer Flash 3.0.5
Moodle Moodle 2.4.0
Moodle Moodle 2.4.1
Moodle Moodle 2.4.2
Moodle Moodle 2.4.3
Moodle Moodle 2.3.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »