Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 27 High: 95 Medium: 464 Low: 37
Reference
Title
Severity
CVE-2021-36394
Moodle Vulnerability
Critical
CVE-2019-3809
Moodle Server-Side Request Forgery (SSRF) Vulnerability
Critical
CVE-2021-21809
Moodle Incorrect Permission Assignment for Critical Resource Vulnerability
Critical
CVE-2021-3943
Moodle Improper Input Validation Vulnerability
Critical
CVE-2022-0332
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2022-30600
Moodle Incorrect Calculation Vulnerability
Critical
CVE-2022-30599
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2022-35649
Moodle Improper Input Validation Vulnerability
Critical
CVE-2024-33999
Moodle Vulnerability
Critical
CVE-2022-40314
Moodle Vulnerability
Critical
CVE-2004-2236
Moodle Other Vulnerability
Critical
CVE-2022-45152
Moodle Server-Side Request Forgery (SSRF) Vulnerability
Critical
CVE-2021-36393
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2021-36392
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2023-28333
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
Critical
CVE-2023-5550
Moodle Other Vulnerability
Critical
CVE-2017-2641
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2025-26533
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2004-2237
Moodle Other Vulnerability
Critical
CVE-2022-40315
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2004-2235
Moodle Other Vulnerability
Critical
CVE-2006-4935
Moodle Improper Input Validation Vulnerability
Critical
CVE-2025-67856
Moodle Vulnerability
Critical
CVE-2019-14880
Moodle Vulnerability
Critical
CVE-2004-2233
Moodle Other Vulnerability
Critical
CVE-2005-2247
Moodle Other Vulnerability
Critical
CVE-2006-4936
Moodle Improper Input Validation Vulnerability
Critical
CVE-2012-1155
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2015-5338
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2024-25982
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High