Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 27 High: 95 Medium: 464 Low: 37
Reference
Title
Severity
CVE-2024-25978
Moodle Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2023-5539
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2015-5267
Moodle 7PK - Security Features Vulnerability
High
CVE-2024-38276
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2024-34008
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2023-5540
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2015-3272
Moodle Other Vulnerability
High
CVE-2010-1615
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2012-1156
Moodle Insertion of Sensitive Information into Log File Vulnerability
High
CVE-2024-43440
Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2012-1168
Moodle Improper Input Validation Vulnerability
High
CVE-2023-30944
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2024-43434
Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2024-43431
Moodle Missing Authorization Vulnerability
High
CVE-2012-1170
Moodle Improper Validation of Integrity Check Value Vulnerability
High
CVE-2024-43428
Moodle Insufficient Verification of Data Authenticity Vulnerability
High
CVE-2012-0801
Moodle Improper Input Validation Vulnerability
High
CVE-2024-43425
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2021-20187
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2025-3642
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2016-2157
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2025-3641
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2025-3638
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2016-7919
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2023-35133
Moodle Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2008-6124
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2023-28335
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2020-14322
Moodle Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2004-2232
Moodle Other Vulnerability
High
CVE-2021-43559
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High