Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 27 High: 95 Medium: 464 Low: 37
Reference
Title
Severity
CVE-2009-4299
Moodle Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2009-4300
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2009-4301
Moodle Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2009-4302
Moodle Cryptographic Issues Vulnerability
Medium
CVE-2009-4303
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2009-4305
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2021-32477
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2022-30596
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-32475
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-5545
Moodle Exposure of Resource to Wrong Sphere Vulnerability
Medium
CVE-2024-48899
Moodle Authorization Bypass Through User-Controlled Key Vulnerability
Medium
CVE-2024-45691
Moodle Vulnerability
Medium
CVE-2024-25983
Moodle Authorization Bypass Through User-Controlled Key Vulnerability
Medium
CVE-2024-48901
Moodle Incorrect Authorization Vulnerability
Medium
CVE-2024-48898
Moodle Missing Authorization Vulnerability
Medium
CVE-2024-48896
Moodle Generation of Error Message Containing Sensitive Information Vulnerability
Medium
CVE-2024-48897
Moodle Incorrect Authorization Vulnerability
Medium
CVE-2024-45689
Moodle Missing Authorization Vulnerability
Medium
CVE-2024-38277
Moodle Use of a Key Past its Expiration Date Vulnerability
Medium
CVE-2023-5542
Moodle Exposure of Resource to Wrong Sphere Vulnerability
Medium
CVE-2023-5548
Moodle Insufficient Verification of Data Authenticity Vulnerability
Medium
CVE-2024-25980
Moodle Vulnerability
Medium
CVE-2023-5549
Moodle Improper Privilege Management Vulnerability
Medium
CVE-2023-5547
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-5546
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-5544
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-5541
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-46858
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-35131
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-35132
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium