Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 24 High: 74 Medium: 413 Low: 35
Reference
Title
Severity
CVE-2023-28333
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
Critical
CVE-2019-14880
Moodle Vulnerability
Critical
CVE-2022-35649
Moodle Improper Input Validation Vulnerability
Critical
CVE-2022-40315
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2022-30599
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2022-30600
Moodle Incorrect Calculation Vulnerability
Critical
CVE-2023-5550
Moodle Other Vulnerability
Critical
CVE-2022-40314
Moodle Vulnerability
Critical
CVE-2022-0332
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2006-4936
Moodle Improper Input Validation Vulnerability
Critical
CVE-2022-45152
Moodle Server-Side Request Forgery (SSRF) Vulnerability
Critical
CVE-2019-3809
Moodle Server-Side Request Forgery (SSRF) Vulnerability
Critical
CVE-2021-21809
Moodle Incorrect Permission Assignment for Critical Resource Vulnerability
Critical
CVE-2021-3943
Moodle Improper Input Validation Vulnerability
Critical
CVE-2004-2237
Moodle Other Vulnerability
Critical
CVE-2021-36394
Moodle Vulnerability
Critical
CVE-2004-2236
Moodle Other Vulnerability
Critical
CVE-2004-2235
Moodle Other Vulnerability
Critical
CVE-2004-2233
Moodle Other Vulnerability
Critical
CVE-2006-4935
Moodle Improper Input Validation Vulnerability
Critical
CVE-2005-2247
Moodle Other Vulnerability
Critical
CVE-2017-2641
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2021-36392
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2021-36393
Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2012-1156
Moodle Insertion of Sensitive Information into Log File Vulnerability
High
CVE-2012-1168
Moodle Improper Input Validation Vulnerability
High
CVE-2020-14321
Moodle Incorrect Authorization Vulnerability
High
CVE-2022-40313
Moodle Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
High
CVE-2022-2986
Moodle Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2021-36395
Moodle Uncontrolled Recursion Vulnerability
High