CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Moodle : Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-45152 918 2022-11-25 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
A blind Server-Side Request Forgery (SSRF) vulnerability was found in Moodle. This flaw exists due to insufficient validation of user-supplied input in LTI provider library. The library does not utilise Moodle's inbuilt cURL helper, which resulted in a blind SSRF risk. An attacker can send a specially crafted HTTP request and trick the application to initiate requests to arbitrary systems. This vulnerability allows a remote attacker to perform SSRF attacks.
2 CVE-2022-45151 79 Exec Code XSS 2022-11-23 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
The stored-XSS vulnerability was discovered in Moodle which exists due to insufficient sanitization of user-supplied data in several "social" user profile fields. An attacker could inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
3 CVE-2022-45150 79 Exec Code XSS 2022-11-23 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
A reflected cross-site scripting vulnerability was discovered in Moodle. This flaw exists due to insufficient sanitization of user-supplied data in policy tool. An attacker can trick the victim to open a specially crafted link that executes an arbitrary HTML and script code in user's browser in context of vulnerable website. This vulnerability may allow an attacker to perform cross-site scripting (XSS) attacks to gain access potentially sensitive information and modification of web pages.
4 CVE-2022-45149 352 CSRF 2022-11-23 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. A user's CSRF token was unnecessarily included in the URL when being redirected to a course they have just restored. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website. This flaw allows an attacker to perform cross-site request forgery attacks.
5 CVE-2022-40316 668 2022-09-30 2022-10-04
0.0
None ??? ??? ??? ??? ??? ???
The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.
6 CVE-2022-40315 89 Sql 2022-09-30 2022-10-04
0.0
None ??? ??? ??? ??? ??? ???
A limited SQL injection risk was identified in the "browse list of users" site administration page.
7 CVE-2022-40314 Exec Code 2022-09-30 2022-10-04
0.0
None ??? ??? ??? ??? ??? ???
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified.
8 CVE-2022-40313 79 XSS 2022-09-30 2022-10-04
0.0
None ??? ??? ??? ??? ??? ???
Recursive rendering of Mustache template helpers containing user input could, in some cases, result in an XSS risk or a page failing to load.
9 CVE-2022-39183 601 2023-01-12 2023-01-20
0.0
None ??? ??? ??? ??? ??? ???
Moodle Plugin - SAML Auth may allow Open Redirect through unspecified vectors.
10 CVE-2022-35653 79 Exec Code XSS 2022-07-25 2022-07-28
0.0
None ??? ??? ??? ??? ??? ???
A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website to steal potentially sensitive information, change appearance of the web page, can perform phishing and drive-by-download attacks. This vulnerability does not impact authenticated users.
11 CVE-2022-35652 601 2022-07-25 2022-08-01
0.0
None ??? ??? ??? ??? ??? ???
An open redirect issue was found in Moodle due to improper sanitization of user-supplied data in mobile auto-login feature. A remote attacker can create a link that leads to a trusted website, however, when clicked, it redirects the victims to arbitrary URL/domain. Successful exploitation of this vulnerability may allow a remote attacker to perform a phishing attack and steal potentially sensitive information.
12 CVE-2022-35651 79 Exec Code XSS 2022-07-25 2022-07-29
0.0
None ??? ??? ??? ??? ??? ???
A stored XSS and blind SSRF vulnerability was found in Moodle, occurs due to insufficient sanitization of user-supplied data in the SCORM track details. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website to steal potentially sensitive information, change appearance of the web page, can perform phishing and drive-by-download attacks.
13 CVE-2022-35650 20 Dir. Trav. 2022-07-25 2022-08-01
0.0
None ??? ??? ??? ??? ??? ???
The vulnerability was found in Moodle, occurs due to input validation error when importing lesson questions. This insufficient path checks results in arbitrary file read risk. This vulnerability allows a remote attacker to perform directory traversal attacks. The capability to access this feature is only available to teachers, managers and admins by default.
14 CVE-2022-35649 20 Exec Code 2022-07-25 2022-08-01
0.0
None ??? ??? ??? ??? ??? ???
The vulnerability was found in Moodle, occurs due to improper input validation when parsing PostScript code. An omitted execution parameter results in a remote code execution risk for sites running GhostScript versions older than 9.50. Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
15 CVE-2022-2986 352 CSRF 2022-10-06 2022-11-10
0.0
None ??? ??? ??? ??? ??? ???
Enabling and disabling installed H5P libraries did not include the necessary token to prevent a CSRF risk.
16 CVE-2021-40695 2022-09-29 2022-10-03
0.0
None ??? ??? ??? ??? ??? ???
It was possible for a student to view their quiz grade before it had been released, using a quiz web service.
17 CVE-2021-40694 116 2022-09-29 2022-10-03
0.0
None ??? ??? ??? ??? ??? ???
Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.
18 CVE-2021-40693 287 Bypass 2022-09-29 2022-10-03
0.0
None ??? ??? ??? ??? ??? ???
An authentication bypass risk was identified in the external database authentication functionality, due to a type juggling vulnerability.
19 CVE-2021-40692 863 2022-09-29 2022-10-03
0.0
None ??? ??? ??? ??? ??? ???
Insufficient capability checks made it possible for teachers to download users outside of their courses.
20 CVE-2021-40691 2022-09-29 2022-10-03
0.0
None ??? ??? ??? ??? ??? ???
A session hijack risk was identified in the Shibboleth authentication plugin.
21 CVE-2021-36568 79 XSS 2022-09-13 2022-09-30
0.0
None ??? ??? ??? ??? ??? ???
In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting Stored(XSS). This affects Moodle 3.11 and Moodle 3.10.4 and Moodle 3.9.7.
22 CVE-2020-14322 770 DoS 2022-08-16 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.
23 CVE-2020-14321 863 2022-08-16 2022-12-08
0.0
None ??? ??? ??? ??? ??? ???
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.
24 CVE-2020-14320 79 XSS 2022-08-16 2022-08-17
0.0
None ??? ??? ??? ??? ??? ???
In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.
25 CVE-2020-1756 20 2022-08-16 2022-08-17
0.0
None ??? ??? ??? ??? ??? ???
In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, insufficient input escaping was applied to the PHP unit webrunner admin tool.
26 CVE-2020-1755 345 Bypass 2022-08-16 2022-08-17
0.0
None ??? ??? ??? ??? ??? ???
In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, X-Forwarded-For headers could be used to spoof a user's IP, in order to bypass remote address checks.
27 CVE-2020-1754 732 2022-08-05 2022-08-07
0.0
None ??? ??? ??? ??? ??? ???
In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, users viewing the grade history report without the 'access all groups' capability were not restricted to viewing grades of users within their own groups.
28 CVE-2020-1691 79 XSS 2022-08-05 2022-08-07
0.0
None ??? ??? ??? ??? ??? ???
In Moodle 3.8, messages required extra sanitizing before updating the conversation overview, to prevent the risk of stored cross-site scripting.
Total number of vulnerabilities : 28   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.