Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moodle moodle 2.6.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2010-4207
Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.4.0 up to and including 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote malicious users to inject arbitrary web script or HTML via vectors related to charts/assets/charts...
Yahoo Yui 2.4.0
Yahoo Yui 2.5.0
Yahoo Yui 2.5.1
Yahoo Yui 2.5.2
Yahoo Yui 2.6.0
Yahoo Yui 2.7.0
Yahoo Yui 2.8.0
Yahoo Yui 2.8.1
383
VMScore
CVE-2010-4208
Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.5.0 up to and including 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote malicious users to inject arbitrary web script or HTML via vectors related to uploader/assets/uplo...
Yahoo Yui 2.5.0
Yahoo Yui 2.5.1
Yahoo Yui 2.5.2
Yahoo Yui 2.6.0
Yahoo Yui 2.7.0
Yahoo Yui 2.8.0
Yahoo Yui 2.8.1
668
VMScore
CVE-2008-4810
The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 before r2797 allows remote malicious users to execute arbitrary PHP code via vectors related to templates and (1) a dollar-sign character, aka "php executed in templates;" and (2) a doub...
Smarty Smarty 1.4.3
Smarty Smarty 1.0
Smarty Smarty 1.0b
Smarty Smarty 2.3.1
Smarty Smarty 2.6.0
Smarty Smarty 1.4.0
Smarty Smarty 1.4.5
Smarty Smarty 2.6.1
Smarty Smarty 2.6.7
Smarty Smarty 2.3.0
Smarty Smarty 1.0a
Smarty Smarty 1.1.0
Smarty Smarty 2.6.15
Smarty Smarty 2.6.3
Smarty Smarty 2.6.14
Smarty Smarty 2.5.0
Smarty Smarty 1.2.1
Smarty Smarty 2.6.17
Smarty Smarty 2.6.11
Smarty Smarty 1.3.0
Smarty Smarty 1.4.1
Smarty Smarty 2.0.1
668
VMScore
CVE-2008-4811
The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 r2797 and previous versions allows remote malicious users to execute arbitrary PHP code via vectors related to templates and a \ (backslash) before a dollar-sign character.
Smarty Smarty 1.4.3
Smarty Smarty 1.0
Smarty Smarty 1.0b
Smarty Smarty 2.3.1
Smarty Smarty 2.6.0
Smarty Smarty 1.4.0
Smarty Smarty 1.4.5
Smarty Smarty 2.6.1
Smarty Smarty 2.6.7
Smarty Smarty 2.3.0
Smarty Smarty 1.0a
Smarty Smarty 1.1.0
Smarty Smarty 2.6.15
Smarty Smarty 2.6.3
Smarty Smarty 2.6.14
Smarty Smarty 2.5.0
Smarty Smarty 1.2.1
Smarty Smarty 2.6.17
Smarty Smarty 2.6.11
Smarty Smarty 1.3.0
Smarty Smarty 1.4.1
Smarty Smarty 2.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8