Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 27 High: 95 Medium: 464 Low: 37
Reference
Title
Severity
CVE-2012-2365
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2008-3326
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2014-7835
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2013-1835
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2012-3393
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2015-0212
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2015-3179
Moodle Permissions Privileges and Access Controls Vulnerability
Low
CVE-2015-2269
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-3396
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2015-0216
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-3390
Moodle Permissions Privileges and Access Controls Vulnerability
Low
CVE-2023-5543
Moodle Vulnerability
Low
CVE-2025-3635
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
Low
CVE-2013-4523
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2015-3178
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2023-5551
Moodle Vulnerability
Low
CVE-2013-4525
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2025-3637
Moodle Use of GET Request Method With Sensitive Query Strings Vulnerability
Low
CVE-2012-0800
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2022-0333
Moodle Incorrect Authorization Vulnerability
Low
CVE-2019-10134
Moodle Improper Input Validation Vulnerability
Low
CVE-2024-1439
Moodle Vulnerability
Low
CVE-2015-2273
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low