Known Vulnerabilities for products from Moodle
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Moodle".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-30944 | The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki metho... | 7.3 - HIGH | 2023-05-02 | 2023-05-11 |
| CVE-2023-30943 | The vulnerability was found Moodle which exists because the application allows a user to control path of the older to create ... | 5.3 - MEDIUM | 2023-05-02 | 2023-05-11 |
| CVE-2023-28333 | The Mustache pix helper contained a potential Mustache injection risk if combined with user input (note: This did not appear ... | 9.8 - CRITICAL | 2023-03-23 | 2023-03-30 |
| CVE-2022-40208 | In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation d... | 4.3 - MEDIUM | 2023-03-24 | 2023-03-24 |
| CVE-2022-0335 | A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. The "d... | 8.8 - HIGH | 2022-01-25 | 2022-12-21 |
| CVE-2022-0334 | A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. Insuff... | 4.3 - MEDIUM | 2022-01-25 | 2022-12-21 |
| CVE-2022-0333 | A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. The ca... | 3.8 - LOW | 2022-01-25 | 2022-12-21 |
| CVE-2022-0332 | A flaw was found in Moodle in versions 3.11 to 3.11.4. An SQL injection risk was identified in the h5p activity web service r... | 9.8 - CRITICAL | 2022-01-25 | 2022-02-01 |
| CVE-2021-43560 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2021-11-22 | 2022-12-21 |
| CVE-2021-43559 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2021-11-22 | 2022-12-21 |
| CVE-2021-43558 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2021-11-22 | 2022-12-21 |
| CVE-2021-40695 | It was possible for a student to view their quiz grade before it had been released, using a quiz web service. | 4.3 - MEDIUM | 2022-09-29 | 2022-10-03 |
| CVE-2021-40694 | Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP serv... | 4.9 - MEDIUM | 2022-09-29 | 2022-10-03 |
| CVE-2021-40693 | An authentication bypass risk was identified in the external database authentication functionality, due to a type juggling vu... | 6.5 - MEDIUM | 2022-09-29 | 2022-10-03 |
| CVE-2021-40692 | Insufficient capability checks made it possible for teachers to download users outside of their courses. | 4.3 - MEDIUM | 2022-09-29 | 2022-10-03 |
| CVE-2021-40691 | A session hijack risk was identified in the Shibboleth authentication plugin. | 4.3 - MEDIUM | 2022-09-29 | 2022-10-03 |
| CVE-2021-36568 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-09-13 | 2022-09-30 |
| CVE-2021-36403 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2023-03-06 | 2023-03-13 |
| CVE-2021-36402 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2023-03-06 | 2023-03-13 |
| CVE-2021-36401 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.8 - MEDIUM | 2023-03-06 | 2023-03-13 |
Known software with vulnerabilities from Moodle
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Moodle | Moodle | - |
Popular searches for "Moodle"
apps.apple.com/us/app/moodle/id633359593
Moodle - Open-source learning platform | Moodle.org
moodle.orgMoodle - Open-source learning platform | Moodle.org Moodle Learning Platform or course management system CMS - a free Open Source software package designed to help educators create effective online courses based on sound pedagogical principles. You can download and use it on any computer you have handy including webhosts , yet it can scale from a single-teacher site to a 200,000-student University. Moodle has a large and diverse user community with over 100,000 sites registered worldwide speaking over 140 languages in every country there is.
ekklesia-online.com/free-hosting/options/content-management/moodle/link os-stobrec.skole.hr/redir_links2.php?l_id=63&url=https%3A%2F%2Fmoodle.org%2F cmapspublic2.ihmc.us/rid=1HT3R0S52-1867J4J-877/Plataforma%20Moodle.url?redirect= www.moodle.org/0.1536527990901153 Moodle Virtual learning environment Open-source software Learning Educational technology Education Free software Web hosting service Content management system Computer Virtual community Pedagogy Computing platform Learning management system Application software Student Monash University Online and offline Download Technology