Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 27 High: 95 Medium: 464 Low: 37
Reference
Title
Severity
CVE-2019-10186
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2025-26525
Moodle Files or Directories Accessible to External Parties Vulnerability
High
CVE-2025-67852
Moodle URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2022-0334
Moodle Exposure of Resource to Wrong Sphere Vulnerability
Medium
CVE-2021-32478
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-67855
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2025-62400
Moodle Vulnerability
Medium
CVE-2006-4786
Moodle Other Vulnerability
Medium
CVE-2006-4939
Moodle Other Vulnerability
Medium
CVE-2006-4784
Moodle Other Vulnerability
Medium
CVE-2006-4938
Moodle Other Vulnerability
Medium
CVE-2006-4942
Moodle Other Vulnerability
Medium
CVE-2006-4941
Moodle Other Vulnerability
Medium
CVE-2004-1424
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2006-4940
Moodle Other Vulnerability
Medium
CVE-2006-4937
Moodle Other Vulnerability
Medium
CVE-2006-4943
Moodle Other Vulnerability
Medium
CVE-2021-20283
Moodle Incorrect Authorization Vulnerability
Medium
CVE-2025-62398
Moodle Vulnerability
Medium
CVE-2019-14827
Moodle Improper Control of Generation of Code (Code Injection)
Medium
CVE-2019-14829
Moodle Improper Following of Specification by Caller Vulnerability
Medium
CVE-2019-14830
Moodle URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2021-20282
Moodle Incorrect Authorization Vulnerability
Medium
CVE-2019-14831
Moodle URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2021-20281
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2004-1978
Moodle Other Vulnerability
Medium
CVE-2004-0725
Moodle Other Vulnerability
Medium
CVE-2021-20280
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-20279
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-32244
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium