Educational

Moodle

Moodle is a Course Management System (CMS) also known as a Learning Management System (LMS) or a Virtual Learning Environment (VLE). It is a Free web application that educators can use to create effective online learning sites.

Official Site:

https://moodle.org/?lang=eng

Severity Summary:

Critical: 24 High: 74 Medium: 413 Low: 35

Reference

Title

Severity

CVE-2021-36396

Moodle Server-Side Request Forgery (SSRF) Vulnerability

High

CVE-2012-1170

Moodle Improper Validation of Integrity Check Value Vulnerability

High

CVE-2016-9187

Moodle Unrestricted Upload of File with Dangerous Type Vulnerability

High

CVE-2016-2157

Moodle Cross-Site Request Forgery (CSRF) Vulnerability

High

CVE-2016-7038

Moodle Weak Password Recovery Mechanism for Forgotten Password Vulnerability

High

CVE-2023-23923

Moodle Vulnerability

High

CVE-2016-7919

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

High

CVE-2016-9186

Moodle Unrestricted Upload of File with Dangerous Type Vulnerability

High

CVE-2012-1155

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability

High

CVE-2024-43425

Moodle Improper Control of Generation of Code (Code Injection) Vulnerability

High

CVE-2020-1756

Moodle Improper Input Validation Vulnerability

High

CVE-2021-43559

Moodle Cross-Site Request Forgery (CSRF) Vulnerability

High

CVE-2007-1429

Moodle Other Vulnerability

High

CVE-2007-1647

Moodle Other Vulnerability

High

CVE-2006-4785

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

High

CVE-2006-0146

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

High

CVE-2006-0147

Moodle Other Vulnerability

High

CVE-2005-3648

Moodle Other Vulnerability

High

CVE-2004-2232

Moodle Other Vulnerability

High

CVE-2014-7845

Moodle Credentials Management Errors Vulnerability

High

CVE-2008-6124

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

High

CVE-2013-5674

Moodle Improper Control of Generation of Code (Code Injection) Vulnerability

High

CVE-2022-0335

Moodle Cross-Site Request Forgery (CSRF) Vulnerability

High

CVE-2020-14322

Moodle Allocation of Resources Without Limits or Throttling Vulnerability

High

CVE-2013-4313

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

High

CVE-2022-0983

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

High

CVE-2021-32476

Moodle Uncontrolled Resource Consumption Vulnerability

High

CVE-2009-4304

Moodle Credentials Management Errors Vulnerability

High

CVE-2021-32474

Moodle Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

High

CVE-2015-3272

Moodle Other Vulnerability

High