Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moodle moodle 1.9.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4304
Moodle 1.8 prior to 1.8.11 and 1.9 prior to 1.9.7 does not use a random password salt in config.php, which makes it easier for malicious users to conduct brute-force password guessing attacks.
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.6
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.9
Moodle Moodle 1.8.7
Moodle Moodle 1.8.10
Moodle Moodle 1.9.3
Moodle Moodle 1.9.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
NA
CVE-2009-4300
Multiple unspecified authentication plugins in Moodle 1.8 prior to 1.8.11 and 1.9 prior to 1.9.7 store the MD5 hashes for passwords in the user table, even when the cached hashes are not used by the plugin, which might make it easier for malicious users to obtain credentials via ...
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.6
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.9
Moodle Moodle 1.8.7
Moodle Moodle 1.8.10
Moodle Moodle 1.9.3
Moodle Moodle 1.9.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
NA
CVE-2009-4302
login/index_form.html in Moodle 1.8 prior to 1.8.11 and 1.9 prior to 1.9.7 links to an index page on the HTTP port even when the page is served from an HTTPS port, which might cause login credentials to be sent in cleartext, even when SSL is intended, and allows remote malicious ...
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.6
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.9
Moodle Moodle 1.8.7
Moodle Moodle 1.8.10
Moodle Moodle 1.9.3
Moodle Moodle 1.9.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
NA
CVE-2009-4297
Multiple cross-site request forgery (CSRF) vulnerabilities in Moodle 1.8 prior to 1.8.11 and 1.9 prior to 1.9.7 allow remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.6
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.9
Moodle Moodle 1.8.7
Moodle Moodle 1.8.10
Moodle Moodle 1.9.3
Moodle Moodle 1.9.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
NA
CVE-2009-4298
The LAMS module (mod/lams) for Moodle 1.8 prior to 1.8.11 and 1.9 prior to 1.9.7 stores the (1) username, (2) firstname, and (3) lastname fields within the user table, which allows malicious users to obtain user account information via unknown vectors.
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.6
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.9
Moodle Moodle 1.8.7
Moodle Moodle 1.8.10
Moodle Moodle 1.9.3
Moodle Moodle 1.9.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
NA
CVE-2009-4299
mod/glossary/showentry.php in the Glossary module for Moodle 1.8 prior to 1.8.11 and 1.9 prior to 1.9.7 does not properly perform access control, which allows malicious users to read unauthorized Glossary entries via unknown vectors.
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.6
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.9
Moodle Moodle 1.8.7
Moodle Moodle 1.8.10
Moodle Moodle 1.9.3
Moodle Moodle 1.9.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
NA
CVE-2009-4301
mnet/lib.php in Moodle 1.8 prior to 1.8.11 and 1.9 prior to 1.9.7, when MNET services are enabled, does not properly check permissions, which allows remote authenticated servers to execute arbitrary MNET functions.
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.6
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.9
Moodle Moodle 1.8.7
Moodle Moodle 1.8.10
Moodle Moodle 1.9.3
Moodle Moodle 1.9.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
NA
CVE-2009-1171
The TeX filter in Moodle 1.6 prior to 1.6.9+, 1.7 prior to 1.7.7+, 1.8 prior to 1.8.9, and 1.9 prior to 1.9.5 allows user-assisted malicious users to read arbitrary files via an input command in a "$$" sequence, which causes LaTeX to include the contents of the file.
Moodle Moodle 1.9.4
Moodle Moodle 1.9.1
Moodle Moodle 1.8.8
Moodle Moodle 1.6.1
Moodle Moodle 1.8.2
Moodle Moodle 1.6.8
Moodle Moodle 1.6.5
Moodle Moodle 1.7.6
Moodle Moodle 1.6.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.6
Moodle Moodle 1.7.1
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.7
Moodle Moodle 1.6.4
Moodle Moodle 1.9.3
Moodle Moodle 1.6.7
Moodle Moodle 1.7.3
Moodle Moodle 1.7.2
Moodle Moodle 1.6.3
Moodle Moodle 1.6.6
1 EDB exploit
NA
CVE-2009-0499
Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 prior to 1.7.7, 1.8 prior to 1.8.8, and 1.9 prior to 1.9.4 allows remote malicious users to delete unauthorized forum posts via a link or IMG tag to post.php.
Moodle Moodle 1.9.1
Moodle Moodle 1.8.2
Moodle Moodle 1.7.6
Moodle Moodle 1.9.2
Moodle Moodle 1.8.6
Moodle Moodle 1.7.1
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.7
Moodle Moodle 1.9.3
Moodle Moodle 1.7.3
Moodle Moodle 1.7.2
Moodle Moodle 1.7.5
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
Moodle Moodle 1.7.4
NA
CVE-2009-0501
Unspecified vulnerability in the Calendar export feature in Moodle 1.8 prior to 1.8.8 and 1.9 prior to 1.9.4 allows malicious users to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors.
Moodle Moodle 1.9.1
Moodle Moodle 1.8.2
Moodle Moodle 1.9.2
Moodle Moodle 1.8.6
Moodle Moodle 1.8.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.7
Moodle Moodle 1.9.3
Moodle Moodle 1.8.4
Moodle Moodle 1.8.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege
CVE-2022-48762
CVE-2022-48751
CVE-2024-37079
CVE-2024-30848
LFI
man-in-the-middle
CVE-2022-48736
CVE-2024-30103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »