Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moodle moodle 2.2.2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-3389
Multiple cross-site scripting (XSS) vulnerabilities in mod/lti/typessettings.php in Moodle 2.2.x prior to 2.2.4 and 2.3.x prior to 2.3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) lti_typename or (2) lti_toolurl parameter.
Moodle Moodle 2.2.2
Moodle Moodle 2.2.1
Moodle Moodle 2.2.3
Moodle Moodle 2.2.0
Moodle Moodle 2.3.0
4
CVSSv2
CVE-2012-1157
Moodle prior to 2.2.2 has a default repository capabilities issue where all repositories are viewable by all users by default
Moodle Moodle
Fedoraproject Fedora 17
Fedoraproject Fedora 16
Fedoraproject Fedora 15
4
CVSSv2
CVE-2012-1158
Moodle prior to 2.2.2 has a course information leak in gradebook where users are able to see hidden grade items in export
Moodle Moodle
Fedoraproject Fedora 17
Fedoraproject Fedora 16
Fedoraproject Fedora 15
4
CVSSv2
CVE-2012-1159
Moodle prior to 2.2.2: Overview report allows users to see hidden courses
Moodle Moodle
Fedoraproject Fedora 17
Fedoraproject Fedora 16
Fedoraproject Fedora 15
4
CVSSv2
CVE-2012-1161
Moodle prior to 2.2.2: Course information leak via hidden courses being displayed in tag search results
Moodle Moodle
Fedoraproject Fedora 17
Fedoraproject Fedora 16
Fedoraproject Fedora 15
4
CVSSv2
CVE-2012-1160
Moodle prior to 2.2.2 has a permission issue in Forum Subscriptions where unenrolled users can subscribe/unsubscribe via mod/forum/index.php
Moodle Moodle
Fedoraproject Fedora 17
Fedoraproject Fedora 16
Fedoraproject Fedora 15
4
CVSSv2
CVE-2014-3617
The forum_print_latest_discussions function in mod/forum/lib.php in Moodle up to and including 2.4.11, 2.5.x prior to 2.5.8, 2.6.x prior to 2.6.5, and 2.7.x prior to 2.7.2 allows remote authenticated users to bypass the individual answer-posting requirement without the mod/forum:...
Moodle Moodle 2.3.8
Moodle Moodle 2.0.2
Moodle Moodle 2.7.1
Moodle Moodle 2.5.1
Moodle Moodle 2.5.3
Moodle Moodle 2.3.4
Moodle Moodle 2.2.2
Moodle Moodle 2.5.7
Moodle Moodle 2.3.1
Moodle Moodle 2.5.5
Moodle Moodle 2.6.1
Moodle Moodle 2.4.3
Moodle Moodle 2.4.1
Moodle Moodle 2.0.1
Moodle Moodle 2.5.2
Moodle Moodle 2.2.9
Moodle Moodle 2.4.9
Moodle Moodle 2.1.2
Moodle Moodle 2.4.2
Moodle Moodle
Moodle Moodle 2.0.4
Moodle Moodle 2.2.6
4
CVSSv2
CVE-2014-0215
The blind-marking implementation in Moodle up to and including 2.3.11, 2.4.x prior to 2.4.10, 2.5.x prior to 2.5.6, and 2.6.x prior to 2.6.3 allows remote authenticated users to de-anonymize student identities by (1) using a screen reader or (2) reading the HTML source.
Moodle Moodle 2.3.8
Moodle Moodle 2.0.2
Moodle Moodle 2.5.1
Moodle Moodle 2.5.3
Moodle Moodle 2.3.4
Moodle Moodle 2.2.2
Moodle Moodle 2.3.1
Moodle Moodle 2.5.5
Moodle Moodle 2.6.1
Moodle Moodle 2.4.3
Moodle Moodle 2.4.1
Moodle Moodle 2.0.1
Moodle Moodle 2.5.2
Moodle Moodle 2.2.9
Moodle Moodle 2.4.9
Moodle Moodle 2.1.2
Moodle Moodle 2.4.2
Moodle Moodle 2.0.4
Moodle Moodle 2.2.6
Moodle Moodle 2.3.6
Moodle Moodle 2.4.6
Moodle Moodle 2.1.10
4
CVSSv2
CVE-2014-0124
The identity-reporting implementations in mod/forum/renderer.php and mod/quiz/override_form.php in Moodle up to and including 2.3.11, 2.4.x prior to 2.4.9, 2.5.x prior to 2.5.5, and 2.6.x prior to 2.6.2 do not properly restrict the display of e-mail addresses, which allows remote...
Moodle Moodle 2.3.8
Moodle Moodle 2.0.2
Moodle Moodle 2.5.1
Moodle Moodle 2.5.3
Moodle Moodle 2.3.4
Moodle Moodle 2.2.2
Moodle Moodle 2.3.1
Moodle Moodle 2.6.1
Moodle Moodle 2.4.3
Moodle Moodle 2.4.1
Moodle Moodle 2.0.1
Moodle Moodle 2.5.2
Moodle Moodle 2.2.9
Moodle Moodle 2.1.2
Moodle Moodle 2.4.2
Moodle Moodle 2.0.4
Moodle Moodle 2.2.6
Moodle Moodle 2.3.6
Moodle Moodle 2.4.6
Moodle Moodle 2.1.10
Moodle Moodle 2.1.8
Moodle Moodle 2.3.10
4
CVSSv2
CVE-2014-0129
badges/mybadges.php in Moodle 2.5.x prior to 2.5.5 and 2.6.x prior to 2.6.2 does not properly track the user to whom a badge was issued, which allows remote authenticated users to modify the visibility of an arbitrary badge via unspecified vectors.
Moodle Moodle 2.3.8
Moodle Moodle 2.0.2
Moodle Moodle 2.5.1
Moodle Moodle 2.5.3
Moodle Moodle 2.3.4
Moodle Moodle 2.2.2
Moodle Moodle 2.3.1
Moodle Moodle 2.6.1
Moodle Moodle 2.4.3
Moodle Moodle 2.4.1
Moodle Moodle 2.0.1
Moodle Moodle 2.5.2
Moodle Moodle 2.2.9
Moodle Moodle 2.1.2
Moodle Moodle 2.4.2
Moodle Moodle 2.0.4
Moodle Moodle 2.2.6
Moodle Moodle 2.3.6
Moodle Moodle 2.4.6
Moodle Moodle 2.1.10
Moodle Moodle 2.1.8
Moodle Moodle 2.3.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »