An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.
Max CVSS
7.5
EPSS Score
0.06%
Published
2023-06-22
Updated
2023-06-30
The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki method for listing pages. A remote attacker can send a specially crafted request to the affected application and execute limited SQL commands within the application database.
Max CVSS
7.3
EPSS Score
0.13%
Published
2023-05-02
Updated
2023-05-11
Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load.
Max CVSS
7.1
EPSS Score
0.09%
Published
2022-09-30
Updated
2022-12-21
The vulnerability was found in Moodle, occurs due to input validation error when importing lesson questions. This insufficient path checks results in arbitrary file read risk. This vulnerability allows a remote attacker to perform directory traversal attacks. The capability to access this feature is only available to teachers, managers and admins by default.
Max CVSS
7.5
EPSS Score
0.29%
Published
2022-07-25
Updated
2022-12-21
In Moodle, insufficient redirect handling made it possible to blindly bypass cURL blocked hosts/allowed ports restrictions, resulting in a blind SSRF risk.
Max CVSS
7.5
EPSS Score
0.06%
Published
2023-03-06
Updated
2023-03-13
In Moodle, the file repository's URL parsing required additional recursion handling to mitigate the risk of recursion denial of service.
Max CVSS
7.5
EPSS Score
0.08%
Published
2023-03-06
Updated
2023-03-13
A denial-of-service risk was identified in the draft files area, due to it not respecting user file upload limits. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.
Max CVSS
7.5
EPSS Score
0.09%
Published
2022-03-11
Updated
2022-12-02
An SQL injection risk existed on sites with MNet enabled and configured, via an XML-RPC call from the connected peer host. Note that this required site administrator access or access to the keypair. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.
Max CVSS
7.2
EPSS Score
0.09%
Published
2022-03-11
Updated
2022-03-18
It was found in Moodle before version 3.10.1, 3.9.4, 3.8.7 and 3.5.16 that it was possible for site administrators to execute arbitrary PHP scripts via a PHP include used during Shibboleth authentication.
Max CVSS
7.2
EPSS Score
0.09%
Published
2021-01-28
Updated
2022-10-21
In moodle, insufficient capability checks could lead to users with the ability to course restore adding additional capabilities to roles within that course. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and earlier unsupported versions. This is fixed in moodle 3.9.3, 3.8.6, 3.7.9, 3.5.15, and 3.10.
Max CVSS
7.5
EPSS Score
0.18%
Published
2020-11-19
Updated
2022-11-07
Users' enrollment capabilities were not being sufficiently checked in Moodle when they are restored into an existing course. This could lead to them unenrolling users without having permission to do so. Versions affected: 3.5 to 3.5.14, 3.7 to 3.7.8, 3.8 to 3.8.5, 3.9 to 3.9.2 and earlier unsupported versions. Fixed in 3.9.3, 3.8.6, 3.7.9, 3.5.15, and 3.10.
Max CVSS
7.5
EPSS Score
0.12%
Published
2020-11-19
Updated
2020-12-02
A vulnerability was found in Moodle where the decompressed size of zip files was not checked against available user quota before unzipping them, which could lead to a denial of service risk. This affects versions 3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier unsupported versions. Fixed in 3.9.2, 3.8.5, 3.7.8 and 3.5.14.
Max CVSS
7.5
EPSS Score
0.10%
Published
2020-12-08
Updated
2020-12-08
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.
Max CVSS
7.5
EPSS Score
0.09%
Published
2022-08-16
Updated
2022-12-07
In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, insufficient input escaping was applied to the PHP unit webrunner admin tool.
Max CVSS
7.2
EPSS Score
0.13%
Published
2022-08-16
Updated
2022-08-17
A flaw was found in Moodle before versions 3.7, 3.6.4. A web service fetching messages was not restricted to the current user's conversations.
Max CVSS
7.5
EPSS Score
0.18%
Published
2019-06-26
Updated
2020-09-30
Moodle 3.5.x before 3.5.4 allows SSRF.
Max CVSS
7.5
EPSS Score
0.10%
Published
2019-03-21
Updated
2019-03-22
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz question bank is imported, it was possible for the question preview that is displayed to execute JavaScript that is written into the question bank.
Max CVSS
7.5
EPSS Score
0.24%
Published
2018-07-10
Updated
2020-10-23
Moodle 3.1.2 allows remote attackers to obtain sensitive information via unspecified vectors, related to a "SQL Injection" issue affecting the Administration panel function in the installation process component. NOTE: the vendor disputes the relevance of this report, noting that "the person who is installing Moodle must know database access credentials and they can access the database directly; there is no need for them to create a SQL injection in one of the installation dialogue fields.
Max CVSS
7.5
EPSS Score
0.24%
Published
2016-10-28
Updated
2024-03-21
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.
Max CVSS
7.3
EPSS Score
0.09%
Published
2017-01-20
Updated
2020-12-01
Atto in Moodle 2.8.x before 2.8.9 and 2.9.x before 2.9.3 allows remote attackers to cause a denial of service (disk consumption) by leveraging the guest role and entering drafts with the editor-autosave feature.
Max CVSS
7.1
EPSS Score
0.21%
Published
2016-02-22
Updated
2020-12-01
lib/moodlelib.php in Moodle through 2.6.11, 2.7.x before 2.7.10, 2.8.x before 2.8.8, and 2.9.x before 2.9.2 relies on the PHP mt_rand function to implement the random_string and complex_random_string functions, which makes it easier for remote attackers to predict password-recovery tokens via a brute-force approach.
Max CVSS
7.5
EPSS Score
0.34%
Published
2016-02-22
Updated
2020-12-01
Open redirect vulnerability in the clean_param function in lib/moodlelib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving an HTTP Referer header that has a substring match with a local URL.
Max CVSS
7.4
EPSS Score
0.30%
Published
2016-02-22
Updated
2020-12-01
The generate_password function in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 does not provide a sufficient number of possible temporary passwords, which allows remote attackers to obtain access via a brute-force attack.
Max CVSS
7.5
EPSS Score
0.75%
Published
2014-11-24
Updated
2020-12-01
The Repositories component in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote attackers to conduct PHP object injection attacks and execute arbitrary code via serialized data associated with an add-on.
Max CVSS
7.5
EPSS Score
4.53%
Published
2014-07-29
Updated
2020-12-01
badges/external.php in Moodle 2.5.x before 2.5.2 does not properly handle an object obtained by unserializing a description of an external badge, which allows remote attackers to conduct PHP object injection attacks via unspecified vectors, as demonstrated by overwriting the value of the userid parameter.
Max CVSS
7.5
EPSS Score
0.45%
Published
2013-09-16
Updated
2020-12-01
40 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!