Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moodle moodle 2.3.7 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-2079
mod/assign/locallib.php in the assignment module in Moodle 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.4 does not consider capability requirements during the processing of ZIP assignment-archive download (aka downloadall) requests, which allows remote authenticated users to read ...
Moodle Moodle 2.3.4
Moodle Moodle 2.3.3
Moodle Moodle 2.3.2
Moodle Moodle 2.3.1
Moodle Moodle 2.3.0
Moodle Moodle 2.3.6
Moodle Moodle 2.3.5
Moodle Moodle 2.4.3
Moodle Moodle 2.4.0
Moodle Moodle 2.4.1
Moodle Moodle 2.4.2
NA
CVE-2013-4940
Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.10.2, as used in Moodle up to and including 2.1.10, 2.2.x prior to 2.2.11, 2.3.x prior to 2.3.8, 2.4.x prior to 2.4.5, 2.5.x prior to 2.5.1, and other products, allows remote malicious ...
Moodle Moodle 2.1.1
Moodle Moodle 2.1.3
Yahoo Yui 3.1.2
Yahoo Yui 3.3.0
Yahoo Yui 3.6.0
Yahoo Yui 3.7.1
Yahoo Yui 3.10.0
Yahoo Yui 3.10.2
Moodle Moodle 2.2.0
Moodle Moodle 2.2.7
Moodle Moodle 2.4.4
Moodle Moodle 2.4.2
Moodle Moodle 2.3.5
Moodle Moodle 2.3.3
Moodle Moodle 2.3.4
Moodle Moodle 2.1.10
Moodle Moodle 2.1.5
Moodle Moodle 2.1.4
Moodle Moodle 2.1.2
Moodle Moodle 2.1.6
Yahoo Yui 3.4.0
Yahoo Yui 3.4.1
NA
CVE-2013-4941
Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 3.2.0 up to and including 3.9.1, as used in Moodle up to and including 2.1.10, 2.2.x prior to 2.2.11, 2.3.x prior to 2.3.8, 2.4.x prior to 2.4.5, 2.5.x prior to 2.5.1, and other produ...
Moodle Moodle 2.1.8
Moodle Moodle 2.1.0
Moodle Moodle 2.1.9
Yahoo Yui 3.0.0
Yahoo Yui 3.7.3
Yahoo Yui 3.8.0
Yahoo Yui 3.8.1
Yahoo Yui 3.9.0
Moodle Moodle 2.2.6
Moodle Moodle 2.2.5
Moodle Moodle 2.5.0
Moodle Moodle 2.4.0
Moodle Moodle 2.1.10
Moodle Moodle 2.1.5
Moodle Moodle 2.1.4
Moodle Moodle 2.1.2
Yahoo Yui 3.3.0
Yahoo Yui 3.4.0
Yahoo Yui 3.4.1
Yahoo Yui 3.5.0
Yahoo Yui 3.5.1
Moodle Moodle 2.2.3
NA
CVE-2013-4939
Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.0.0 up to and including 3.9.1, as used in Moodle up to and including 2.1.10, 2.2.x prior to 2.2.11, 2.3.x prior to 2.3.8, 2.4.x prior to 2.4.5, 2.5.x prior to 2.5.1, and other products,...
Yahoo Yui 3.8.0
Moodle Moodle 2.3.4
Yahoo Yui 3.5.0
Moodle Moodle 2.2.2
Yahoo Yui 3.8.1
Yahoo Yui 3.6.0
Yahoo Yui 3.1.0
Moodle Moodle 2.3.1
Moodle Moodle 2.4.3
Moodle Moodle 2.4.1
Yahoo Yui 3.7.0
Moodle Moodle 2.2.9
Moodle Moodle 2.1.2
Moodle Moodle 2.4.2
Moodle Moodle 2.2.6
Yahoo Yui 3.10.0
Yahoo Yui 3.2.0
Yahoo Yui 3.7.2
Moodle Moodle 2.3.6
Yahoo Yui 3.9.0
Moodle Moodle 2.1.10
Moodle Moodle 2.1.8
NA
CVE-2013-4525
Cross-site scripting (XSS) vulnerability in mod/quiz/report/responses/responses_table.php in Moodle up to and including 2.2.11, 2.3.x prior to 2.3.10, 2.4.x prior to 2.4.7, and 2.5.x prior to 2.5.3 allows remote authenticated users to inject arbitrary web script or HTML via an an...
Moodle Moodle 2.4.6
Moodle Moodle 2.4.1
Moodle Moodle 2.3.1
Moodle Moodle 2.3.3
Moodle Moodle 2.3.8
Moodle Moodle 2.2.8
Moodle Moodle 2.2.6
Moodle Moodle
Moodle Moodle 2.2.1
Moodle Moodle 2.1.4
Moodle Moodle 2.1.2
Moodle Moodle 2.0.8
Moodle Moodle 2.0.6
Moodle Moodle 2.0.4
Moodle Moodle 1.9.9
Moodle Moodle 1.9.7
Moodle Moodle 1.9.17
Moodle Moodle 1.9.15
Moodle Moodle 1.8.8
Moodle Moodle 1.8.3
Moodle Moodle 1.8.14
Moodle Moodle 1.7.6
NA
CVE-2013-4522
lib/filelib.php in Moodle up to and including 2.2.11, 2.3.x prior to 2.3.10, 2.4.x prior to 2.4.7, and 2.5.x prior to 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote malicious users to obtain sensitive information by requesting a file that...
Moodle Moodle 2.4.0
Moodle Moodle 2.4.1
Moodle Moodle 2.4.2
Moodle Moodle 2.4.3
Moodle Moodle 2.2.9
Moodle Moodle 2.2.8
Moodle Moodle 2.2.7
Moodle Moodle 2.2.6
Moodle Moodle 2.5.0
Moodle Moodle 2.5.2
Moodle Moodle 2.4.5
Moodle Moodle 2.3.0
Moodle Moodle 2.3.5
Moodle Moodle 2.3.7
Moodle Moodle 2.2.4
Moodle Moodle 2.2.2
Moodle Moodle 2.1.7
Moodle Moodle 2.1.5
Moodle Moodle 2.1.1
Moodle Moodle 2.0.9
Moodle Moodle 2.0.2
Moodle Moodle 2.0.0
NA
CVE-2013-4523
Cross-site scripting (XSS) vulnerability in message/lib.php in Moodle up to and including 2.2.11, 2.3.x prior to 2.3.10, 2.4.x prior to 2.4.7, and 2.5.x prior to 2.5.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted message.
Moodle Moodle 2.5.2
Moodle Moodle 2.4.0
Moodle Moodle 2.4.5
Moodle Moodle 2.3.0
Moodle Moodle 2.3.2
Moodle Moodle 2.3.7
Moodle Moodle 2.2.9
Moodle Moodle 2.2.2
Moodle Moodle 2.2.10
Moodle Moodle 2.1.7
Moodle Moodle 2.1.5
Moodle Moodle 2.5.1
Moodle Moodle 2.4.6
Moodle Moodle 2.3.9
Moodle Moodle 2.3.1
Moodle Moodle 2.3.8
Moodle Moodle 2.2.8
Moodle Moodle 2.2.3
Moodle Moodle
Moodle Moodle 2.1.6
Moodle Moodle 2.1.4
Moodle Moodle 2.0.8
NA
CVE-2013-4524
Directory traversal vulnerability in repository/filesystem/lib.php in Moodle up to and including 2.2.11, 2.3.x prior to 2.3.10, 2.4.x prior to 2.4.7, and 2.5.x prior to 2.5.3 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a path.
Moodle Moodle 2.5.1
Moodle Moodle 2.4.2
Moodle Moodle 2.4.4
Moodle Moodle 2.3.4
Moodle Moodle 2.3.6
Moodle Moodle 2.2.5
Moodle Moodle 2.2.3
Moodle Moodle 2.2.0
Moodle Moodle 2.1.8
Moodle Moodle 2.1.10
Moodle Moodle 2.1.0
Moodle Moodle 2.0.3
Moodle Moodle 2.0.1
Moodle Moodle 1.9.6
Moodle Moodle 1.9.4
Moodle Moodle 1.9.14
Moodle Moodle 1.9.12
Moodle Moodle 1.8.7
Moodle Moodle 1.8.5
Moodle Moodle 1.8.13
Moodle Moodle 1.8.11
Moodle Moodle 1.7.3
NA
CVE-2013-3630
Moodle up to and including 2.5.2 allows remote authenticated administrators to execute arbitrary programs by configuring the aspell pathname and then triggering a spell-check operation within the TinyMCE editor.
Moodle Moodle 2.5.0
Moodle Moodle 2.4.1
Moodle Moodle 2.3.8
Moodle Moodle 2.3.1
Moodle Moodle 2.2.9
Moodle Moodle 2.2.2
Moodle Moodle 2.2.10
Moodle Moodle 2.1.7
Moodle Moodle 2.1.5
Moodle Moodle 2.0.9
Moodle Moodle 2.0.7
Moodle Moodle 2.0.0
Moodle Moodle 1.9.8
Moodle Moodle 1.9.3
Moodle Moodle 1.9.18
Moodle Moodle 1.9.11
Moodle Moodle 1.9.1
Moodle Moodle 1.8.4
Moodle Moodle 1.8.2
Moodle Moodle 1.8.10
Moodle Moodle 1.6.7
Moodle Moodle 1.6.0
1 EDB exploit
1 Metasploit module
NA
CVE-2013-7341
Multiple cross-site scripting (XSS) vulnerabilities in Flowplayer Flash prior to 3.2.17, as used in Moodle up to and including 2.3.11, 2.4.x prior to 2.4.9, 2.5.x prior to 2.5.5, and 2.6.x prior to 2.6.2, allow remote malicious users to inject arbitrary web script or HTML by (1) ...
Moodle Moodle 2.0.3
Moodle Moodle 2.0.4
Moodle Moodle 2.0.5
Moodle Moodle 2.0.6
Moodle Moodle 2.0.7
Moodle Moodle 2.1.9
Moodle Moodle 2.2.0
Moodle Moodle 2.2.1
Moodle Moodle 2.2.10
Flowplayer Flowplayer Flash 3.2.12
Flowplayer Flowplayer Flash 3.2.11
Flowplayer Flowplayer Flash 3.2.10
Flowplayer Flowplayer Flash 3.2.9
Flowplayer Flowplayer Flash 3.1.0
Flowplayer Flowplayer Flash 3.1.4
Flowplayer Flowplayer Flash 3.0.6
Flowplayer Flowplayer Flash 3.0.5
Moodle Moodle 2.4.0
Moodle Moodle 2.4.1
Moodle Moodle 2.4.2
Moodle Moodle 2.4.3
Moodle Moodle 2.3.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5