Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 27 High: 95 Medium: 464 Low: 37
Reference
Title
Severity
CVE-2018-16854
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2024-34001
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2018-1133
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2025-67848
Moodle Improper Handling of Insufficient Permissions or Privileges Vulnerability
High
CVE-2024-45690
Moodle Incorrect Default Permissions Vulnerability
High
CVE-2018-10891
Moodle Vulnerability
High
CVE-2024-43438
Moodle Authorization Bypass Through User-Controlled Key Vulnerability
High
CVE-2024-43436
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2020-10738
Moodle Improper Input Validation Vulnerability
High
CVE-2026-26046
Moodle Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
High
CVE-2024-38275
Moodle Incomplete Cleanup Vulnerability
High
CVE-2020-25698
Moodle Vulnerability
High
CVE-2020-25699
Moodle Improper Privilege Management Vulnerability
High
CVE-2018-1137
Moodle Improper Input Validation Vulnerability
High
CVE-2025-67853
Moodle Improper Restriction of Excessive Authentication Attempts Vulnerability
High
CVE-2019-10154
Moodle Other Vulnerability
High
CVE-2024-34009
Moodle Vulnerability
High
CVE-2020-25629
Moodle Improper Access Control Vulnerability
High
CVE-2025-67851
Moodle Improper Neutralization of Formula Elements in a CSV File Vulnerability
High
CVE-2024-34007
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2016-3734
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2018-14630
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2018-1082
Moodle Improper Authentication Vulnerability
High
CVE-2016-7038
Moodle Weak Password Recovery Mechanism for Forgotten Password Vulnerability
High
CVE-2025-32044
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2026-26045
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2025-3625
Moodle Authorization Bypass Through User-Controlled Key Vulnerability
High
CVE-2019-3847
Moodle Improper Input Validation Vulnerability
High
CVE-2019-3849
Moodle Improper Privilege Management Vulnerability
High
CVE-2025-62399
Moodle Improper Restriction of Excessive Authentication Attempts Vulnerability
High