| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2013-1836 |
264 |
|
|
2013-03-25 |
2013-03-26 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not properly manage privileges for WebDAV repositories, which allows remote authenticated users to read, modify, or delete arbitrary site-wide repositories by leveraging certain read access. |
|
2 |
CVE-2013-1835 |
200 |
|
+Info |
2013-03-25 |
2013-03-26 |
3.5 |
None |
Remote |
Medium |
Single system |
Partial |
None |
None |
|
Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated administrators to obtain sensitive information from the external repositories of arbitrary users by leveraging the login_as feature. |
|
3 |
CVE-2013-1834 |
264 |
|
|
2013-03-25 |
2013-03-26 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes via a modified (1) userid or (2) courseid field. |
|
4 |
CVE-2013-1833 |
79 |
|
XSS |
2013-03-25 |
2013-03-26 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Multiple cross-site scripting (XSS) vulnerabilities in the File Picker module in Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allow remote authenticated users to inject arbitrary web script or HTML via a crafted filename. |
|
5 |
CVE-2013-1832 |
200 |
|
+Info |
2013-03-25 |
2013-03-26 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
repository/webdav/lib.php in Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 includes the WebDAV password in the configuration form, which allows remote authenticated administrators to obtain sensitive information by configuring an instance. |
|
6 |
CVE-2013-1831 |
200 |
|
+Info |
2013-03-25 |
2013-03-26 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
lib/setuplib.php in Moodle through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote attackers to obtain sensitive information via an invalid request, which reveals the absolute path in an exception message. |
|
7 |
CVE-2013-1830 |
264 |
|
+Info |
2013-03-25 |
2013-03-26 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
user/view.php in Moodle through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not enforce the forceloginforprofiles setting, which allows remote attackers to obtain sensitive course-profile information by leveraging the guest role, as demonstrated by a Google search. |
|
8 |
CVE-2013-1829 |
200 |
|
+Info |
2013-03-25 |
2013-03-26 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
calendar/managesubscriptions.php in Moodle 2.4.x before 2.4.2 does not consider capability requirements before displaying calendar subscriptions, which allows remote authenticated users to obtain potentially sensitive information by leveraging the student role. |
|
9 |
CVE-2012-6112 |
264 |
|
|
2013-01-27 |
2013-01-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string. |
|
10 |
CVE-2012-6106 |
264 |
|
|
2013-01-27 |
2013-01-30 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
calendar/managesubscriptions.php in the Manage Subscriptions implementation in Moodle 2.4.x before 2.4.1 omits a capability check, which allows remote authenticated users to remove course-level calendar subscriptions by leveraging the student role and sending an iCalendar object. |
|
11 |
CVE-2012-6105 |
200 |
|
+Info |
2013-01-27 |
2013-01-28 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
blog/rsslib.php in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 continues to provide a blog RSS feed after blogging is disabled, which allows remote attackers to obtain sensitive information by reading this feed. |
|
12 |
CVE-2012-6104 |
200 |
|
+Info |
2013-01-27 |
2013-01-30 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
blog/rsslib.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allows remote attackers to obtain sensitive information from site-level blogs by leveraging the guest role and reading an RSS feed. |
|
13 |
CVE-2012-6103 |
352 |
|
CSRF |
2013-01-27 |
2013-01-28 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Multiple cross-site request forgery (CSRF) vulnerabilities in user/messageselect.php in the messaging system in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allow remote attackers to hijack the authentication of arbitrary users for requests that send course messages. |
|
14 |
CVE-2012-6102 |
264 |
|
|
2013-01-27 |
2013-01-28 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
None |
|
lib.php in the Submission comments plugin in the Assignment module in Moodle 2.3.x before 2.3.4 and 2.4.x before 2.4.1 allows remote attackers to read or modify the submission comments (aka feedback comments) of arbitrary users via a crafted URI. |
|
15 |
CVE-2012-6101 |
20 |
|
|
2013-01-27 |
2013-01-28 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Multiple open redirect vulnerabilities in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors related to (1) backup/backupfilesedit.php, (2) comment/comment_post.php, (3) course/switchrole.php, (4) mod/wiki/filesedit.php, (5) tag/coursetags_add.php, or (6) user/files.php. |
|
16 |
CVE-2012-6100 |
264 |
|
|
2013-01-27 |
2013-01-28 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
report/outline/index.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/user:viewhiddendetails capability requirement, which allows remote authenticated users to discover a hidden lastaccess value by reading an activity report. |
|
17 |
CVE-2012-6099 |
20 |
|
|
2013-01-27 |
2013-01-28 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
The moodle1 backup converter in backup/converter/moodle1/lib.php in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly validate pathnames, which allows remote authenticated users to read arbitrary files by leveraging the backup-restoration feature. |
|
18 |
CVE-2012-6098 |
264 |
|
|
2013-01-27 |
2013-01-30 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
grade/edit/outcome/edit_form.php in Moodle 1.9.x through 1.9.19, 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/grade:manage capability requirement, which allows remote authenticated users to convert custom outcomes into standard site-wide outcomes by leveraging the teacher role and using the re-editing feature. |
|
19 |
CVE-2012-5481 |
264 |
|
Bypass |
2012-11-21 |
2012-11-21 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
Moodle 2.3.x before 2.3.3 allows remote authenticated users to bypass the moodle/role:manage capability requirement and read all capability data by visiting the Check Permissions page. |
|
20 |
CVE-2012-5480 |
264 |
|
Bypass |
2012-11-21 |
2012-11-21 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
None |
Partial |
|
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended restrictions on reading other participants' entries via an advanced search. |
|
21 |
CVE-2012-5479 |
264 |
|
|
2012-11-21 |
2012-11-21 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to upload and execute files via a modified Portfolio API callback. |
|
22 |
CVE-2012-5473 |
200 |
|
+Info |
2012-11-21 |
2013-01-29 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to read activity entries of a different group's users via an advanced search. |
|
23 |
CVE-2012-5472 |
264 |
|
Bypass |
2012-11-21 |
2012-11-21 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 allows remote authenticated users to bypass intended access restrictions via a modified value of a frozen form field. |
|
24 |
CVE-2012-5471 |
264 |
|
|
2012-11-21 |
2013-01-29 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging an unattended workstation after a logout. |
|
25 |
CVE-2012-4408 |
264 |
|
Bypass |
2012-09-19 |
2012-09-19 |
5.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
None |
|
course/reset.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 checks an update capability instead of a reset capability, which allows remote authenticated users to bypass intended access restrictions via a reset operation. |
|
26 |
CVE-2012-4407 |
200 |
|
+Info |
2012-09-19 |
2012-09-20 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
lib/filelib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly check the publication state of blog files, which allows remote attackers to obtain sensitive information by reading a blog entry that references a non-public file. |
|
27 |
CVE-2012-4403 |
200 |
|
+Info |
2012-09-19 |
2012-09-19 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
theme/yui_combo.php in Moodle 2.3.x before 2.3.2 does not properly construct error responses for the drag-and-drop script, which allows remote attackers to obtain the installation path by sending a request for a nonexistent resource and then reading the response. |
|
28 |
CVE-2012-4402 |
264 |
|
|
2012-09-19 |
2012-10-26 |
4.9 |
None |
Remote |
Medium |
Single system |
Partial |
Partial |
None |
|
webservice/lib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly restrict the use of web-service tokens, which allows remote authenticated users to run arbitrary external-service functions via a token intended for only one service. |
|
29 |
CVE-2012-4401 |
264 |
|
Bypass |
2012-09-19 |
2012-09-19 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended capability restrictions and perform certain topic changes by leveraging course-editing capabilities. |
|
30 |
CVE-2012-4400 |
264 |
|
Bypass |
2012-09-19 |
2012-10-26 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
repository/repository_ajax.php in Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended upload-size restrictions via a -1 value in the maxbytes field. |
|
31 |
CVE-2012-3398 |
|
|
DoS |
2012-07-23 |
2012-08-09 |
4.0 |
None |
Remote |
Low |
Single system |
None |
None |
Partial |
|
Algorithmic complexity vulnerability in Moodle 1.9.x before 1.9.19, 2.0.x before 2.0.10, 2.1.x before 2.1.7, and 2.2.x before 2.2.4 allows remote authenticated users to cause a denial of service (CPU consumption) by using the advanced-search feature on a database activity that has many records. |
|
32 |
CVE-2012-3397 |
264 |
|
Bypass |
2012-07-23 |
2012-07-24 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
lib/modinfolib.php in Moodle 2.0.x before 2.0.10, 2.1.x before 2.1.7, 2.2.x before 2.2.4, and 2.3.x before 2.3.1 does not check for a group-membership requirement when determining whether an activity is unavailable or hidden, which allows remote authenticated users to bypass intended access restrictions by selecting an activity that is configured for a group of other users. |
|
33 |
CVE-2012-3396 |
79 |
|
XSS |
2012-07-23 |
2012-07-24 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in cohort/edit_form.php in Moodle 2.0.x before 2.0.10, 2.1.x before 2.1.7, 2.2.x before 2.2.4, and 2.3.x before 2.3.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the idnumber field. NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-2365. |
|
34 |
CVE-2012-3395 |
89 |
|
Exec Code Sql |
2012-07-23 |
2012-08-09 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
SQL injection vulnerability in mod/feedback/complete.php in Moodle 2.0.x before 2.0.10, 2.1.x before 2.1.7, and 2.2.x before 2.2.4 allows remote authenticated users to execute arbitrary SQL commands via crafted form data. |
|
35 |
CVE-2012-3394 |
200 |
|
+Info |
2012-07-23 |
2012-07-24 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
auth/ldap/ntlmsso_attempt.php in Moodle 2.0.x before 2.0.10, 2.1.x before 2.1.7, 2.2.x before 2.2.4, and 2.3.x before 2.3.1 redirects users from an https LDAP login URL to an http URL, which allows remote attackers to obtain sensitive information by sniffing the network. |
|
36 |
CVE-2012-3393 |
79 |
|
XSS |
2012-07-23 |
2012-07-24 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in repository/lib.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 allows remote authenticated administrators to inject arbitrary web script or HTML by renaming a repository. |
|
37 |
CVE-2012-3392 |
16 |
|
Bypass |
2012-07-23 |
2012-07-24 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
mod/forum/unsubscribeall.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 does not consider whether a forum is optional, which allows remote authenticated users to bypass forum-subscription requirements by leveraging the student role and unsubscribing from all forums. |
|
38 |
CVE-2012-3391 |
264 |
|
Bypass |
2012-07-23 |
2012-07-24 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
mod/forum/rsslib.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 does not properly implement the requirement for posting before reading a Q&A forum, which allows remote authenticated users to bypass intended access restrictions by leveraging the student role and reading the RSS feed for a forum. |
|
39 |
CVE-2012-3390 |
264 |
|
+Info |
2012-07-23 |
2012-08-09 |
3.5 |
None |
Remote |
Medium |
Single system |
Partial |
None |
None |
|
lib/filelib.php in Moodle 2.1.x before 2.1.7 and 2.2.x before 2.2.4 does not properly restrict file access after a block has been hidden, which allows remote authenticated users to obtain sensitive information by reading a file that is embedded in a block. |
|
40 |
CVE-2012-3389 |
79 |
|
XSS |
2012-07-23 |
2012-07-24 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Multiple cross-site scripting (XSS) vulnerabilities in mod/lti/typessettings.php in Moodle 2.2.x before 2.2.4 and 2.3.x before 2.3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) lti_typename or (2) lti_toolurl parameter. |
|
41 |
CVE-2012-3388 |
264 |
|
Bypass |
2012-07-23 |
2012-08-09 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
The is_enrolled function in lib/accesslib.php in Moodle 2.2.x before 2.2.4 and 2.3.x before 2.3.1 does not properly interact with the caching feature, which might allow remote authenticated users to bypass an intended capability check via unspecified vectors that trigger caching of a user record. |
|
42 |
CVE-2012-3387 |
264 |
|
Bypass |
2012-07-23 |
2012-07-24 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
Moodle 2.3.x before 2.3.1 uses only a client-side check for whether references are permitted in a file upload, which allows remote authenticated users to bypass intended alias (aka shortcut) restrictions via a client that omits this check. |
|
43 |
CVE-2012-2367 |
264 |
|
Bypass |
2012-07-20 |
2012-10-30 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
Moodle 1.9.x before 1.9.18, 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to bypass the moodle/calendar:manageownentries capability requirement and add a calendar entry via a New Entry action. |
|
44 |
CVE-2012-2366 |
|
|
|
2012-07-20 |
2012-07-23 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
mod/data/preset.php in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 does not properly iterate through an array, which allows remote authenticated users to overwrite arbitrary database activity presets via unspecified vectors. |
|
45 |
CVE-2012-2365 |
79 |
|
XSS |
2012-07-20 |
2012-10-30 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to inject arbitrary web script or HTML via the idnumber field to cohort/edit.php. |
|
46 |
CVE-2012-2364 |
79 |
|
XSS |
2012-07-20 |
2012-07-23 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in lib/filelib.php in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to inject arbitrary web script or HTML via an assignment submission with zip compression, leading to text/html rendering during a "download all" action. |
|
47 |
CVE-2012-2363 |
89 |
|
Exec Code Sql |
2012-07-20 |
2012-07-23 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
SQL injection vulnerability in calendar/event.php in the calendar implementation in Moodle 1.9.x before 1.9.18 allows remote authenticated users to execute arbitrary SQL commands via a crafted calendar event. |
|
48 |
CVE-2012-2362 |
79 |
|
XSS |
2012-07-20 |
2012-11-06 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in blog/lib.php in the blog implementation in Moodle 1.9.x before 1.9.18, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted parameter to blog/index.php. |
|
49 |
CVE-2012-2361 |
79 |
|
XSS |
2012-07-20 |
2012-07-23 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in admin/webservice/forms.php in the web services implementation in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to inject arbitrary web script or HTML via the name field (aka the service name) to admin/webservice/service.php. |
|
50 |
CVE-2012-2360 |
79 |
|
XSS |
2012-07-20 |
2012-07-23 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in the Wiki subsystem in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted string that is inserted into a page title. |
