Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/51498?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/51498?format=api", "purl": "pkg:composer/moodle/moodle@2.7.12", "type": "composer", "namespace": "moodle", "name": "moodle", "version": "2.7.12", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "3.9.15", "latest_non_vulnerable_version": "5.1.2", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11401?format=api", "vulnerability_id": "VCID-1hht-sfqa-wkan", "summary": "Cross-Site Request Forgery (CSRF)\nA CSRF attack is possible that allows attackers to change the \"number of courses displayed in the course overview block\" configuration setting.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7491", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00122", "scoring_system": "epss", "scoring_elements": "0.30882", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7491" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=352355", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=352355" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7491", "reference_id": "CVE-2017-7491", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7491" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52359?format=api", "purl": "pkg:composer/moodle/moodle@2.7.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/107495?format=api", "purl": "pkg:composer/moodle/moodle@2.7.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/52360?format=api", "purl": "pkg:composer/moodle/moodle@3.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/53064?format=api", "purl": "pkg:composer/moodle/moodle@3.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/52357?format=api", "purl": "pkg:composer/moodle/moodle@3.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/52750?format=api", "purl": "pkg:composer/moodle/moodle@3.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/52368?format=api", "purl": "pkg:composer/moodle/moodle@3.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-beap-cjmv-s7he" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.3" } ], "aliases": [ "CVE-2017-7491", "GHSA-3hmr-948v-5qgq" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1hht-sfqa-wkan" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/10937?format=api", "vulnerability_id": "VCID-1nd2-ew9g-tfek", "summary": "Cross-site Scripting\nMultiple cross-site scripting (XSS) vulnerabilities in `auth/db/auth.php` in Moodle allow remote attackers to inject arbitrary web script or HTML via an external DB profile field.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50705", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50705" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2152", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44992", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2152" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/3b214760fb51ae2b0c85bbb2b272b9bc7c164657", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/3b214760fb51ae2b0c85bbb2b272b9bc7c164657" }, { "reference_url": "https://github.com/moodle/moodle/commit/4db8407d3eaba17a8d3f81957b8e93e9f2554055", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/4db8407d3eaba17a8d3f81957b8e93e9f2554055" }, { "reference_url": "https://github.com/moodle/moodle/commit/4ee7394c8bfa95a63428385b542c2066cd2d8ea1", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/4ee7394c8bfa95a63428385b542c2066cd2d8ea1" }, { "reference_url": "https://github.com/moodle/moodle/commit/54d6ee8c0874d72705ffa4c7c17d7c90bc16c897", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/54d6ee8c0874d72705ffa4c7c17d7c90bc16c897" }, { "reference_url": "https://github.com/moodle/moodle/commit/61da84e4148aa1de83a6389eb77abf3bbf09a349", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/61da84e4148aa1de83a6389eb77abf3bbf09a349" }, { "reference_url": "https://github.com/moodle/moodle/commit/82d0c0b5218e9ceb35a4e24b4a4e1e2e9cfc840c", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/82d0c0b5218e9ceb35a4e24b4a4e1e2e9cfc840c" }, { "reference_url": "https://github.com/moodle/moodle/commit/ce597604763272396e5cb8ec93859a8568020b8b", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ce597604763272396e5cb8ec93859a8568020b8b" }, { "reference_url": "https://github.com/moodle/moodle/commit/d9d8e9c3fe92c5f25e319a38fe5617088965ad20", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d9d8e9c3fe92c5f25e319a38fe5617088965ad20" }, { "reference_url": "https://github.com/moodle/moodle/commit/f4fcb1c4f76488d4571d3d265efce3813676c45d", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/f4fcb1c4f76488d4571d3d265efce3813676c45d" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330174", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330174" }, { "reference_url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2152", "reference_id": "CVE-2016-2152", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2152" }, { "reference_url": "https://github.com/advisories/GHSA-6mxm-wpqv-675h", "reference_id": "GHSA-6mxm-wpqv-675h", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-6mxm-wpqv-675h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2152", "GHSA-6mxm-wpqv-675h" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1nd2-ew9g-tfek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15233?format=api", "vulnerability_id": "VCID-2et6-3ejg-27b8", "summary": "Exposure of Sensitive Information to an Unauthorized Actor\nIt was possible for a student to view their quiz grade before it had been released, using a quiz web service. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32473", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0033", "scoring_system": "epss", "scoring_elements": "0.56172", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32473" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=422307", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=422307" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32473", "reference_id": "CVE-2021-32473", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32473" }, { "reference_url": "https://github.com/advisories/GHSA-wx87-h539-4775", "reference_id": "GHSA-wx87-h539-4775", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-wx87-h539-4775" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/59910?format=api", "purl": "pkg:composer/moodle/moodle@3.5.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59911?format=api", "purl": "pkg:composer/moodle/moodle@3.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/59912?format=api", "purl": "pkg:composer/moodle/moodle@3.10.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.4" } ], "aliases": [ "CVE-2021-32473", "GHSA-wx87-h539-4775" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2et6-3ejg-27b8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12078?format=api", "vulnerability_id": "VCID-3gup-tvzm-z7dt", "summary": "Cross-site Scripting\nMoodle is vulnerable to XSS via a calendar event name.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1045", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00237", "scoring_system": "epss", "scoring_elements": "0.46975", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1045" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=364384", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=364384" }, { "reference_url": "https://web.archive.org/web/20210124134120/http://www.securityfocus.com/bid/102755", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210124134120/http://www.securityfocus.com/bid/102755" }, { "reference_url": "http://www.securityfocus.com/bid/102755", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102755" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1045", "reference_id": "CVE-2018-1045", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1045" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/53853?format=api", "purl": "pkg:composer/moodle/moodle@3.1.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/53854?format=api", "purl": "pkg:composer/moodle/moodle@3.2.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/53855?format=api", "purl": "pkg:composer/moodle/moodle@3.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-vx5n-esff-fqew" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.3.4" } ], "aliases": [ "CVE-2018-1045", "GHSA-595j-wpfg-23w4" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3gup-tvzm-z7dt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13755?format=api", "vulnerability_id": "VCID-3r3j-bqzm-5ufz", "summary": "Improper Access Control\nA web service fetching messages was not restricted to the current user's conversations.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10154", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.4671", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10154" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10154", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10154" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/2904a7f851da8e66be12f41d55068bf07817fbd6", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/2904a7f851da8e66be12f41d55068bf07817fbd6" }, { "reference_url": "https://github.com/moodle/moodle/commit/a3d19efab4aff83c07db9f0ad34c8f0e1f29c64c", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/a3d19efab4aff83c07db9f0ad34c8f0e1f29c64c" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=386521", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=386521" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10154", "reference_id": "CVE-2019-10154", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10154" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/57253?format=api", "purl": "pkg:composer/moodle/moodle@3.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.4" } ], "aliases": [ "CVE-2019-10154", "GHSA-ww45-x87c-wgff" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3r3j-bqzm-5ufz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11403?format=api", "vulnerability_id": "VCID-4nnu-qu33-27gx", "summary": "Improper Privilege Management\nRemote authenticated users can take ownership of arbitrary blogs by editing an external blog link.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7489", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00316", "scoring_system": "epss", "scoring_elements": "0.54932", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7489" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=352353", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=352353" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7489", "reference_id": "CVE-2017-7489", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7489" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52359?format=api", "purl": "pkg:composer/moodle/moodle@2.7.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/107495?format=api", "purl": "pkg:composer/moodle/moodle@2.7.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/52360?format=api", "purl": "pkg:composer/moodle/moodle@3.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/53064?format=api", "purl": "pkg:composer/moodle/moodle@3.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/52357?format=api", "purl": "pkg:composer/moodle/moodle@3.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/52750?format=api", "purl": "pkg:composer/moodle/moodle@3.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/52368?format=api", "purl": "pkg:composer/moodle/moodle@3.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-beap-cjmv-s7he" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.3" } ], "aliases": [ "CVE-2017-7489", "GHSA-m34m-fgh4-v7cx" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4nnu-qu33-27gx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/170186?format=api", "vulnerability_id": "VCID-4s7h-83dq-aua7", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.34928", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20184" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=417167", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=417167" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20184", "reference_id": "CVE-2021-20184", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20184" }, { "reference_url": "https://github.com/advisories/GHSA-mm73-86f9-5x5c", "reference_id": "GHSA-mm73-86f9-5x5c", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-mm73-86f9-5x5c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77485?format=api", "purl": "pkg:composer/moodle/moodle@3.8.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/77484?format=api", "purl": "pkg:composer/moodle/moodle@3.9.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/63969?format=api", "purl": "pkg:composer/moodle/moodle@3.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-6231-6qrp-bqag" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gj75-c27j-ekbu" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.1" } ], "aliases": [ "CVE-2021-20184", "GHSA-mm73-86f9-5x5c" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4s7h-83dq-aua7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11939?format=api", "vulnerability_id": "VCID-4t6w-wvj2-ffek", "summary": "Information Exposure\nStudents can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15110", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00237", "scoring_system": "epss", "scoring_elements": "0.46715", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15110" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=361784", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=361784" }, { "reference_url": "http://www.securityfocus.com/bid/101909", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/101909" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15110", "reference_id": "CVE-2017-15110", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15110" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/98023?format=api", "purl": "pkg:composer/moodle/moodle@3.1.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/53067?format=api", "purl": "pkg:composer/moodle/moodle@3.1.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/53068?format=api", "purl": "pkg:composer/moodle/moodle@3.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-beap-cjmv-s7he" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/53069?format=api", "purl": "pkg:composer/moodle/moodle@3.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-beap-cjmv-s7he" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-vx5n-esff-fqew" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.3.3" } ], "aliases": [ "CVE-2017-15110", "GHSA-rjh8-w8jg-xwq5" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4t6w-wvj2-ffek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16214?format=api", "vulnerability_id": "VCID-5k7a-c53n-akbt", "summary": "Cross-Site Request Forgery (CSRF)\nCross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage Assignment plugins.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-53031", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-53031" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2157", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26714", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2157" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/01b19e761f94a4f3615d5c8f6314309aa83469f3", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/01b19e761f94a4f3615d5c8f6314309aa83469f3" }, { "reference_url": "https://github.com/moodle/moodle/commit/1452f1e1d37d816648e3e015296de59509847287", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/1452f1e1d37d816648e3e015296de59509847287" }, { "reference_url": "https://github.com/moodle/moodle/commit/55ba3a26d2710ce3c5f13287b0c3538b9a934fa4", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/55ba3a26d2710ce3c5f13287b0c3538b9a934fa4" }, { "reference_url": "https://github.com/moodle/moodle/commit/85984545a937b0790c355473d7295eb60b0265eb", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/85984545a937b0790c355473d7295eb60b0265eb" }, { "reference_url": "https://github.com/moodle/moodle/commit/a0cd21cd5cc63961243518a58e9d5d01182dbbb4", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/a0cd21cd5cc63961243518a58e9d5d01182dbbb4" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330179", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330179" }, { "reference_url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2157", "reference_id": "CVE-2016-2157", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2157" }, { "reference_url": "https://github.com/advisories/GHSA-f5pm-c4cw-563p", "reference_id": "GHSA-f5pm-c4cw-563p", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-f5pm-c4cw-563p" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2157", "GHSA-f5pm-c4cw-563p" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5k7a-c53n-akbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16218?format=api", "vulnerability_id": "VCID-6j1h-d82g-6qg7", "summary": "Exposure of Sensitive Information to an Unauthorized Actor\nlib/ajax/getnavbranch.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3, when the forcelogin feature is enabled, allows remote attackers to obtain sensitive category-detail information from the navigation branch by leveraging the guest role for an Ajax request.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52774", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52774" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2158", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00328", "scoring_system": "epss", "scoring_elements": "0.5604", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2158" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/0766509ab02353008af62f953f7ebc0f6210411a", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/0766509ab02353008af62f953f7ebc0f6210411a" }, { "reference_url": "https://github.com/moodle/moodle/commit/3c069c16db62d0e0a64137578e92c22d604dd261", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/3c069c16db62d0e0a64137578e92c22d604dd261" }, { "reference_url": "https://github.com/moodle/moodle/commit/7b9fbb1cf4228b39f81454cdb8370e7853fbe184", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/7b9fbb1cf4228b39f81454cdb8370e7853fbe184" }, { "reference_url": "https://github.com/moodle/moodle/commit/dc8421575f35585a7a4fc1c9710dafd1d0483d4e", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/dc8421575f35585a7a4fc1c9710dafd1d0483d4e" }, { "reference_url": "https://github.com/moodle/moodle/commit/ea8987644fdbbee291337263598b0c3c7bf27c36", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ea8987644fdbbee291337263598b0c3c7bf27c36" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330180", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330180" }, { "reference_url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2158", "reference_id": "CVE-2016-2158", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2158" }, { "reference_url": "https://github.com/advisories/GHSA-m882-j7gq-v9p7", "reference_id": "GHSA-m882-j7gq-v9p7", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-m882-j7gq-v9p7" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2158", "GHSA-m882-j7gq-v9p7" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6j1h-d82g-6qg7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15224?format=api", "vulnerability_id": "VCID-6x4n-my8x-sbfg", "summary": "Uncontrolled Resource Consumption\nA denial-of-service risk was identified in the draft files area, due to it not respecting user file upload limits. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32476", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00674", "scoring_system": "epss", "scoring_elements": "0.71763", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32476" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=422310", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=422310" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32476", "reference_id": "CVE-2021-32476", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32476" }, { "reference_url": "https://github.com/advisories/GHSA-4qxc-qxrp-33cw", "reference_id": "GHSA-4qxc-qxrp-33cw", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4qxc-qxrp-33cw" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/59910?format=api", "purl": "pkg:composer/moodle/moodle@3.5.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59911?format=api", "purl": "pkg:composer/moodle/moodle@3.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/59912?format=api", "purl": "pkg:composer/moodle/moodle@3.10.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.4" } ], "aliases": [ "CVE-2021-32476", "GHSA-4qxc-qxrp-33cw" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6x4n-my8x-sbfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/170185?format=api", "vulnerability_id": "VCID-a7n4-f1nk-vqec", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20183", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59223", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20183" }, { "reference_url": "https://github.com/moodle/moodle/commit/dc9de7b0d487b73c23c221dc0b8b6e01654921f3", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/dc9de7b0d487b73c23c221dc0b8b6e01654921f3" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=417166", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=417166" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20183", "reference_id": "CVE-2021-20183", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20183" }, { "reference_url": "https://github.com/advisories/GHSA-xhfx-rm8q-c3xv", "reference_id": "GHSA-xhfx-rm8q-c3xv", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-xhfx-rm8q-c3xv" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/63969?format=api", "purl": "pkg:composer/moodle/moodle@3.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-6231-6qrp-bqag" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gj75-c27j-ekbu" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/77487?format=api", "purl": "pkg:composer/moodle/moodle@4.0.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-91z3-7wza-c7gs" }, { "vulnerability": "VCID-bvne-5ym9-byaz" }, { "vulnerability": "VCID-zhhy-m421-nffk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.0.0-beta" } ], "aliases": [ "CVE-2021-20183", "GHSA-xhfx-rm8q-c3xv" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a7n4-f1nk-vqec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15222?format=api", "vulnerability_id": "VCID-a8sa-7ed7-wbby", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32475", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00324", "scoring_system": "epss", "scoring_elements": "0.55719", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32475" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=422309", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=422309" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32475", "reference_id": "CVE-2021-32475", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32475" }, { "reference_url": "https://github.com/advisories/GHSA-5wjh-v7c8-wrhx", "reference_id": "GHSA-5wjh-v7c8-wrhx", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5wjh-v7c8-wrhx" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/59910?format=api", "purl": "pkg:composer/moodle/moodle@3.5.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59911?format=api", "purl": "pkg:composer/moodle/moodle@3.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/59912?format=api", "purl": "pkg:composer/moodle/moodle@3.10.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.4" } ], "aliases": [ "CVE-2021-32475", "GHSA-5wjh-v7c8-wrhx" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a8sa-7ed7-wbby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11056?format=api", "vulnerability_id": "VCID-aazg-a3fs-nub3", "summary": "Unrestricted Upload of File with Dangerous Type\nUnrestricted file upload vulnerability in the double extension support in the \"image\" module in Moodle allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02078", "scoring_system": "epss", "scoring_elements": "0.84253", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9187" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://packetstormsecurity.com/files/139466/Moodle-CMS-3.1.2-Cross-Site-Scripting-File-Upload.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://packetstormsecurity.com/files/139466/Moodle-CMS-3.1.2-Cross-Site-Scripting-File-Upload.html" }, { "reference_url": "http://www.securityfocus.com/bid/94191", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/94191" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9187", "reference_id": "CVE-2016-9187", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9187" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51931?format=api", "purl": "pkg:composer/moodle/moodle@3.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-44x7-sn7m-4kga" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-937t-wbcy-qfbz" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-mzy3-yscv-9kc4" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.3" } ], "aliases": [ "CVE-2016-9187", "GHSA-58fm-v4pr-jh8p" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aazg-a3fs-nub3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11324?format=api", "vulnerability_id": "VCID-ahbw-7fj3-eugs", "summary": "SQL Injection\nAn SQL injection can occur via user preferences.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2641", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01895", "scoring_system": "epss", "scoring_elements": "0.83526", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2641" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=349419", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=349419" }, { "reference_url": "https://www.exploit-db.com/exploits/41828", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.exploit-db.com/exploits/41828" }, { "reference_url": "http://www.securityfocus.com/bid/96977", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/96977" }, { "reference_url": "http://www.securitytracker.com/id/1038174", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id/1038174" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/41828.php", "reference_id": "CVE-2017-2641", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/41828.php" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2641", "reference_id": "CVE-2017-2641", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2641" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52359?format=api", "purl": "pkg:composer/moodle/moodle@2.7.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/52360?format=api", "purl": "pkg:composer/moodle/moodle@3.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/52357?format=api", "purl": "pkg:composer/moodle/moodle@3.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/52358?format=api", "purl": "pkg:composer/moodle/moodle@3.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-beap-cjmv-s7he" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-tnr3-gukc-euh5" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.2" } ], "aliases": [ "CVE-2017-2641", "GHSA-xhq3-455r-xv44" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ahbw-7fj3-eugs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/170189?format=api", "vulnerability_id": "VCID-ajnx-w4at-7fgp", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00555", "scoring_system": "epss", "scoring_elements": "0.68434", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20187" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=417171", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=417171" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20187", "reference_id": "CVE-2021-20187", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20187" }, { "reference_url": "https://github.com/advisories/GHSA-2jrm-gww7-wch2", "reference_id": "GHSA-2jrm-gww7-wch2", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-2jrm-gww7-wch2" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77486?format=api", "purl": "pkg:composer/moodle/moodle@3.5.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/77485?format=api", "purl": "pkg:composer/moodle/moodle@3.8.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/77484?format=api", "purl": "pkg:composer/moodle/moodle@3.9.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/63969?format=api", "purl": "pkg:composer/moodle/moodle@3.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-6231-6qrp-bqag" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gj75-c27j-ekbu" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.1" } ], "aliases": [ "CVE-2021-20187", "GHSA-2jrm-gww7-wch2" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ajnx-w4at-7fgp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11348?format=api", "vulnerability_id": "VCID-am73-3uvc-r3bf", "summary": "Improper Access Control\nThe \"restore teacher\" feature in Moodle allows remote authenticated users to overwrite the course id number.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-51369", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-51369" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3733", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63558", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3733" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933" }, { "reference_url": "https://github.com/moodle/moodle/commit/12c28574868d6f6e5c57fb63298c82cb8bdd0bb6", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/12c28574868d6f6e5c57fb63298c82cb8bdd0bb6" }, { "reference_url": "https://github.com/moodle/moodle/commit/24b0c3c86ae96e46b87d6e9d6bcf4a6014dae8f0", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/24b0c3c86ae96e46b87d6e9d6bcf4a6014dae8f0" }, { "reference_url": "https://github.com/moodle/moodle/commit/2950f9fb9128f9ae48e00b864da90be76c2bf139", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/2950f9fb9128f9ae48e00b864da90be76c2bf139" }, { "reference_url": "https://github.com/moodle/moodle/commit/3c9d2b104023a8b9fdc5f4d7e136083babd2609a", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/3c9d2b104023a8b9fdc5f4d7e136083babd2609a" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/05/17/4", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/05/17/4" }, { "reference_url": "http://www.securitytracker.com/id/1035902", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id/1035902" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3733", "reference_id": "CVE-2016-3733", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3733" }, { "reference_url": "https://github.com/advisories/GHSA-gr8j-qm8r-rfgg", "reference_id": "GHSA-gr8j-qm8r-rfgg", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-gr8j-qm8r-rfgg" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52162?format=api", "purl": "pkg:composer/moodle/moodle@2.7.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/52156?format=api", "purl": "pkg:composer/moodle/moodle@2.8.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/52163?format=api", "purl": "pkg:composer/moodle/moodle@2.9.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/52164?format=api", "purl": "pkg:composer/moodle/moodle@3.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.4" } ], "aliases": [ "CVE-2016-3733", "GHSA-gr8j-qm8r-rfgg" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-am73-3uvc-r3bf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15893?format=api", "vulnerability_id": "VCID-bar7-ac9c-y3ca", "summary": "Exposure of Sensitive Information to an Unauthorized Actor\nuser/index.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 grants excessive authorization on the basis of the moodle/course:viewhiddenuserfields capability, which allows remote authenticated users to discover student e-mail addresses by leveraging the teacher role and reading a Participants list.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52433", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52433" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2151", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00327", "scoring_system": "epss", "scoring_elements": "0.5591", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2151" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/089ab60017cd3207990658fbd37f7f31948539fa", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/089ab60017cd3207990658fbd37f7f31948539fa" }, { "reference_url": "https://github.com/moodle/moodle/commit/094fddd00f2e8e832e21e80f417c7b88b33a1f27", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/094fddd00f2e8e832e21e80f417c7b88b33a1f27" }, { "reference_url": "https://github.com/moodle/moodle/commit/85380c6b616e82e31115fbb585d37f0e15f8b0b2", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/85380c6b616e82e31115fbb585d37f0e15f8b0b2" }, { "reference_url": "https://github.com/moodle/moodle/commit/8e24a54e526c149469bd77c910876c4489e87841", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/8e24a54e526c149469bd77c910876c4489e87841" }, { "reference_url": "https://github.com/moodle/moodle/commit/a0034bb01773e36dffed2a665646f9cc31d68d5b", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/a0034bb01773e36dffed2a665646f9cc31d68d5b" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330173", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330173" }, { "reference_url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2151", "reference_id": "CVE-2016-2151", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2151" }, { "reference_url": "https://github.com/advisories/GHSA-r3fc-hx6q-g6cq", "reference_id": "GHSA-r3fc-hx6q-g6cq", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r3fc-hx6q-g6cq" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2151", "GHSA-r3fc-hx6q-g6cq" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bar7-ac9c-y3ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14790?format=api", "vulnerability_id": "VCID-cf2z-a3h4-jkhf", "summary": "Incorrect Authorization\nThe `calendar:manageentries` capability allowed managers to access or modify any calendar event, but should have been restricted from accessing user level events.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0333", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.484", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0333" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043663", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043663" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/2ee27313cea0d7073f5a6a35eccdfddcb3a9adad", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/2ee27313cea0d7073f5a6a35eccdfddcb3a9adad" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=431100", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=431100" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0333", "reference_id": "CVE-2022-0333", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0333" }, { "reference_url": "https://github.com/advisories/GHSA-m434-m5pv-p35w", "reference_id": "GHSA-m434-m5pv-p35w", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-m434-m5pv-p35w" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/78814?format=api", "purl": "pkg:composer/moodle/moodle@3.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/59248?format=api", "purl": "pkg:composer/moodle/moodle@3.9.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59249?format=api", "purl": "pkg:composer/moodle/moodle@3.10.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-7zmr-qupd-4fg6" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59244?format=api", "purl": "pkg:composer/moodle/moodle@3.11.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.5" } ], "aliases": [ "CVE-2022-0333", "GHSA-m434-m5pv-p35w" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cf2z-a3h4-jkhf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/107952?format=api", "vulnerability_id": "VCID-cr7f-vvmv-aqfr", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9188", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47178", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9188" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9188", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9188" }, { "reference_url": "https://packetstormsecurity.com/files/139466/Moodle-CMS-3.1.2-Cross-Site-Scripting-File-Upload.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://packetstormsecurity.com/files/139466/Moodle-CMS-3.1.2-Cross-Site-Scripting-File-Upload.html" }, { "reference_url": "https://web.archive.org/web/20210123190812/http://www.securityfocus.com/bid/94189", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210123190812/http://www.securityfocus.com/bid/94189" }, { "reference_url": "https://github.com/advisories/GHSA-7ghm-fp7p-qvjq", "reference_id": "GHSA-7ghm-fp7p-qvjq", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-7ghm-fp7p-qvjq" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51930?format=api", "purl": "pkg:composer/moodle/moodle@3.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-44x7-sn7m-4kga" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-937t-wbcy-qfbz" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-mzy3-yscv-9kc4" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.2" } ], "aliases": [ "CVE-2016-9188", "GHSA-7ghm-fp7p-qvjq" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cr7f-vvmv-aqfr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136434?format=api", "vulnerability_id": "VCID-d2au-r7m3-cyc8", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10189", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36039", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10189" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10189", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10189" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388570", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388570" }, { "reference_url": "http://www.securityfocus.com/bid/109271", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/109271" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10189", "reference_id": "CVE-2019-10189", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10189" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142887?format=api", "purl": "pkg:composer/moodle/moodle@3.5.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10189", "GHSA-h7xp-7fjp-ghhc" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d2au-r7m3-cyc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/170188?format=api", "vulnerability_id": "VCID-dhu5-3tda-2qfx", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.63027", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20186" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=417170", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=417170" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20186", "reference_id": "CVE-2021-20186", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20186" }, { "reference_url": "https://github.com/advisories/GHSA-h8m4-h385-qhqv", "reference_id": "GHSA-h8m4-h385-qhqv", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-h8m4-h385-qhqv" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77486?format=api", "purl": "pkg:composer/moodle/moodle@3.5.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/77485?format=api", "purl": "pkg:composer/moodle/moodle@3.8.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/77484?format=api", "purl": "pkg:composer/moodle/moodle@3.9.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/63969?format=api", "purl": "pkg:composer/moodle/moodle@3.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-6231-6qrp-bqag" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gj75-c27j-ekbu" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.1" } ], "aliases": [ "CVE-2021-20186", "GHSA-h8m4-h385-qhqv" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dhu5-3tda-2qfx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14366?format=api", "vulnerability_id": "VCID-e52k-bb2k-tbgh", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nA URL parameter in the filetype site administrator tool requires extra sanitizing to prevent a reflected XSS risk.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43558", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00159", "scoring_system": "epss", "scoring_elements": "0.36515", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021515", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021515" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=429097", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=429097" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43558", "reference_id": "CVE-2021-43558", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43558" }, { "reference_url": "https://github.com/advisories/GHSA-wpfp-q843-v772", "reference_id": "GHSA-wpfp-q843-v772", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-wpfp-q843-v772" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/58601?format=api", "purl": "pkg:composer/moodle/moodle@3.11.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fxx8-f2pp-27du" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.4" } ], "aliases": [ "CVE-2021-43558", "GHSA-wpfp-q843-v772" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e52k-bb2k-tbgh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13466?format=api", "vulnerability_id": "VCID-eb8w-rqef-sqca", "summary": "Improper Authorization\nUsers could assign themselves an escalated role within courses or content accessed via LTI, by modifying the request to the LTI publisher site.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3849", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59339", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3849" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3849", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3849" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/427463a52574e4b3bcbe1c65c49066438770641e", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/427463a52574e4b3bcbe1c65c49066438770641e" }, { "reference_url": "https://github.com/moodle/moodle/commit/430f685834cef190bdf58afabe79e765d596890d", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/430f685834cef190bdf58afabe79e765d596890d" }, { "reference_url": "https://github.com/moodle/moodle/commit/723d1a747555b795ed53a0fad01da455797bb78f", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/723d1a747555b795ed53a0fad01da455797bb78f" }, { "reference_url": "https://github.com/moodle/moodle/commit/898d5d05a0c3ae6795db0241bf3cb5951213d45c", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/898d5d05a0c3ae6795db0241bf3cb5951213d45c" }, { "reference_url": "https://github.com/moodle/moodle/commit/b77dcd23d8e39265b5c096f0d947764c02d832c8", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/b77dcd23d8e39265b5c096f0d947764c02d832c8" }, { "reference_url": "https://github.com/moodle/moodle/commit/cd3060d941a051931eb2613b25bafb0108665895", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/cd3060d941a051931eb2613b25bafb0108665895" }, { "reference_url": "https://github.com/moodle/moodle/commit/fba7dcd90abd45210d782a79c6e25bb3840c7438", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/fba7dcd90abd45210d782a79c6e25bb3840c7438" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=384012#p1547744", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=384012#p1547744" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3849", "reference_id": "CVE-2019-3849", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3849" }, { "reference_url": "https://github.com/advisories/GHSA-5wg9-5w3f-hxmh", "reference_id": "GHSA-5wg9-5w3f-hxmh", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5wg9-5w3f-hxmh" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/56661?format=api", "purl": "pkg:composer/moodle/moodle@3.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/56659?format=api", "purl": "pkg:composer/moodle/moodle@3.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/56660?format=api", "purl": "pkg:composer/moodle/moodle@3.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.3" } ], "aliases": [ "CVE-2019-3849", "GHSA-5wg9-5w3f-hxmh" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eb8w-rqef-sqca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12947?format=api", "vulnerability_id": "VCID-ehpf-6ra7-syfy", "summary": "Code Injection\nMoodle is vulnerable to an XML import of ddwtos could lead to intentional remote code execution. When importing legacy `drag and drop into text` (ddwtos) type quiz questions, it was possible to inject and execute PHP code from within the imported questions, either intentionally or by importing questions from an untrusted source.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-62880", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-62880" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14630", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01859", "scoring_system": "epss", "scoring_elements": "0.83373", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14630" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14630", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14630" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/09cbca8566a388e8f0a1a0cfd86cd0667088ed2c", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/09cbca8566a388e8f0a1a0cfd86cd0667088ed2c" }, { "reference_url": "https://github.com/moodle/moodle/commit/be092b730910ad97fff0511e177a097ec1cc4b1c", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/be092b730910ad97fff0511e177a097ec1cc4b1c" }, { "reference_url": "https://github.com/moodle/moodle/commit/cb8aefa658cf7ad8f002a480343afb2dea94cc08", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/cb8aefa658cf7ad8f002a480343afb2dea94cc08" }, { "reference_url": "https://github.com/moodle/moodle/commit/cfc4393aa689c277a27b9a040ff7dcbdac4e41dd", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/cfc4393aa689c277a27b9a040ff7dcbdac4e41dd" }, { "reference_url": "https://github.com/moodle/moodle/commit/da1eeea0ff3d292b7669e478abc114872dd9cc8f", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/da1eeea0ff3d292b7669e478abc114872dd9cc8f" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=376023", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=376023" }, { "reference_url": "https://seclists.org/fulldisclosure/2018/Sep/28", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://seclists.org/fulldisclosure/2018/Sep/28" }, { "reference_url": "https://web.archive.org/web/20200227111301/https://www.securityfocus.com/bid/105354", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20200227111301/https://www.securityfocus.com/bid/105354" }, { "reference_url": "https://www.sec-consult.com/en/blog/advisories/remote-code-execution-php-unserialize-moodle-open-source-learning-platform-cve-2018-14630", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.sec-consult.com/en/blog/advisories/remote-code-execution-php-unserialize-moodle-open-source-learning-platform-cve-2018-14630" }, { "reference_url": "https://www.sec-consult.com/en/blog/advisories/remote-code-execution-php-unserialize-moodle-open-source-learning-platform-cve-2018-14630/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.sec-consult.com/en/blog/advisories/remote-code-execution-php-unserialize-moodle-open-source-learning-platform-cve-2018-14630/" }, { "reference_url": "http://www.securityfocus.com/bid/105354", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/105354" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14630", "reference_id": "CVE-2018-14630", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14630" }, { "reference_url": "https://github.com/advisories/GHSA-c3pr-h96w-2jjg", "reference_id": "GHSA-c3pr-h96w-2jjg", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-c3pr-h96w-2jjg" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/98023?format=api", "purl": "pkg:composer/moodle/moodle@3.1.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/55462?format=api", "purl": "pkg:composer/moodle/moodle@3.1.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/55459?format=api", "purl": "pkg:composer/moodle/moodle@3.3.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.3.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/55460?format=api", "purl": "pkg:composer/moodle/moodle@3.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/55461?format=api", "purl": "pkg:composer/moodle/moodle@3.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ecj2-c6rx-57a1" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-vabw-g3da-bqbz" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.2" } ], "aliases": [ "CVE-2018-14630", "GHSA-c3pr-h96w-2jjg" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ehpf-6ra7-syfy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11251?format=api", "vulnerability_id": "VCID-fgw6-c8p8-u7hw", "summary": "Injection Vulnerability\nIn Moodle, text injection can occur in email headers, potentially leading to outbound spam.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5013", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58618", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-5013" }, { "reference_url": "https://github.com/moodle/moodle/commit/ed63718caa48803843a14140d8a27f04aba9c8c4", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ed63718caa48803843a14140d8a27f04aba9c8c4" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=336698", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=336698" }, { "reference_url": "https://web.archive.org/web/20210123154543/http://www.securityfocus.com/bid/92040", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210123154543/http://www.securityfocus.com/bid/92040" }, { "reference_url": "http://www.securityfocus.com/bid/92040", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/92040" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5013", "reference_id": "CVE-2016-5013", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5013" }, { "reference_url": "https://github.com/advisories/GHSA-2hh3-jmv8-5fmx", "reference_id": "GHSA-2hh3-jmv8-5fmx", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-2hh3-jmv8-5fmx" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52155?format=api", "purl": "pkg:composer/moodle/moodle@2.7.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/98015?format=api", "purl": "pkg:composer/moodle/moodle@2.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/52157?format=api", "purl": "pkg:composer/moodle/moodle@2.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/52158?format=api", "purl": "pkg:composer/moodle/moodle@3.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/52154?format=api", "purl": "pkg:composer/moodle/moodle@3.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-44x7-sn7m-4kga" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-937t-wbcy-qfbz" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-mzy3-yscv-9kc4" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.1" } ], "aliases": [ "CVE-2016-5013", "GHSA-2hh3-jmv8-5fmx" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fgw6-c8p8-u7hw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14787?format=api", "vulnerability_id": "VCID-fj1x-be1c-h3c4", "summary": "Exposure of Resource to Wrong Sphere\nInsufficient capability checks could lead to users accessing their grade report for courses where they does not have the required `gradereport/user:view` capability.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0334", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.3509", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0334" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043664", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043664" }, { "reference_url": "https://github.com/moodle/moodle/commit/1964d68f8500ea3c7b776fa8a2af6266ed109f84", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/1964d68f8500ea3c7b776fa8a2af6266ed109f84" }, { "reference_url": "https://github.com/moodle/moodle/commit/6d18f136ae88ec97e351a723df570816a959ec68", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/6d18f136ae88ec97e351a723df570816a959ec68" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=431102", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=431102" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0334", "reference_id": "CVE-2022-0334", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0334" }, { "reference_url": "https://github.com/advisories/GHSA-93pj-4p65-qmr9", "reference_id": "GHSA-93pj-4p65-qmr9", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-93pj-4p65-qmr9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/78814?format=api", "purl": "pkg:composer/moodle/moodle@3.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/59248?format=api", "purl": "pkg:composer/moodle/moodle@3.9.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59249?format=api", "purl": "pkg:composer/moodle/moodle@3.10.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-7zmr-qupd-4fg6" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59244?format=api", "purl": "pkg:composer/moodle/moodle@3.11.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.5" } ], "aliases": [ "CVE-2022-0334", "GHSA-93pj-4p65-qmr9" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fj1x-be1c-h3c4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14365?format=api", "vulnerability_id": "VCID-fvkk-381y-1kcb", "summary": "Cross-Site Request Forgery (CSRF)\nThe `delete related badge` functionality does not include the necessary token check to prevent a CSRF risk.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43559", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.28916", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43559" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021517", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021517" }, { "reference_url": "https://github.com/moodle/moodle/commit/20d41ebae4eb28269298504c68db511a05ec4969", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/20d41ebae4eb28269298504c68db511a05ec4969" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=429099", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=429099" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43559", "reference_id": "CVE-2021-43559", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43559" }, { "reference_url": "https://github.com/advisories/GHSA-3jrj-x6cj-97cp", "reference_id": "GHSA-3jrj-x6cj-97cp", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-3jrj-x6cj-97cp" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/58601?format=api", "purl": "pkg:composer/moodle/moodle@3.11.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fxx8-f2pp-27du" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.4" } ], "aliases": [ "CVE-2021-43559", "GHSA-3jrj-x6cj-97cp" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fvkk-381y-1kcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154286?format=api", "vulnerability_id": "VCID-fx3x-sc7h-guhb", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14321", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.39399", "scoring_system": "epss", "scoring_elements": "0.97367", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14321" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/d07fb8b9e8bf47fe60ad2aea553329bd1fb96e37", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d07fb8b9e8bf47fe60ad2aea553329bd1fb96e37" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=407393", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=407393" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14321", "reference_id": "CVE-2020-14321", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14321" }, { "reference_url": "https://github.com/advisories/GHSA-9q29-jcjw-fw7h", "reference_id": "GHSA-9q29-jcjw-fw7h", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-9q29-jcjw-fw7h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77367?format=api", "purl": "pkg:composer/moodle/moodle@3.5.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/77369?format=api", "purl": "pkg:composer/moodle/moodle@3.7.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/77365?format=api", "purl": "pkg:composer/moodle/moodle@3.8.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/77364?format=api", "purl": "pkg:composer/moodle/moodle@3.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mk9g-47tz-tfcv" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-pfv8-kvcb-5udc" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.1" } ], "aliases": [ "CVE-2020-14321", "GHSA-9q29-jcjw-fw7h" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fx3x-sc7h-guhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13116?format=api", "vulnerability_id": "VCID-gtpy-dhmm-mufn", "summary": "Cross-Site Request Forgery (CSRF)\nThe login form is not protected by a token to prevent login cross-site request forgery.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-63183", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-63183" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16854", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01178", "scoring_system": "epss", "scoring_elements": "0.79053", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16854" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16854", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16854" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=378731", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=378731" }, { "reference_url": "http://www.securityfocus.com/bid/106017", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/106017" }, { "reference_url": "http://www.securitytracker.com/id/1042154", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id/1042154" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16854", "reference_id": "CVE-2018-16854", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16854" }, { "reference_url": "https://github.com/advisories/GHSA-xj5f-qv37-r9jc", "reference_id": "GHSA-xj5f-qv37-r9jc", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-xj5f-qv37-r9jc" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/98023?format=api", "purl": "pkg:composer/moodle/moodle@3.1.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/56082?format=api", "purl": "pkg:composer/moodle/moodle@3.1.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/56083?format=api", "purl": "pkg:composer/moodle/moodle@3.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/56084?format=api", "purl": "pkg:composer/moodle/moodle@3.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/56085?format=api", "purl": "pkg:composer/moodle/moodle@3.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ecj2-c6rx-57a1" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-vabw-g3da-bqbz" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.3" } ], "aliases": [ "CVE-2018-16854", "GHSA-xj5f-qv37-r9jc" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gtpy-dhmm-mufn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16206?format=api", "vulnerability_id": "VCID-he6b-b249-bber", "summary": "Exposure of Sensitive Information to an Unauthorized Actor\nThe capability check to access other badges in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to read the badges of other users.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3732", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00126", "scoring_system": "epss", "scoring_elements": "0.31458", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3732" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://web.archive.org/web/20210413170947/http://www.securitytracker.com/id/1035902", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210413170947/http://www.securitytracker.com/id/1035902" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/05/17/4", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/05/17/4" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3732", "reference_id": "CVE-2016-3732", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3732" }, { "reference_url": "https://github.com/advisories/GHSA-5282-96ff-xx3h", "reference_id": "GHSA-5282-96ff-xx3h", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5282-96ff-xx3h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52162?format=api", "purl": "pkg:composer/moodle/moodle@2.7.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/52156?format=api", "purl": "pkg:composer/moodle/moodle@2.8.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/52163?format=api", "purl": "pkg:composer/moodle/moodle@2.9.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/52164?format=api", "purl": "pkg:composer/moodle/moodle@3.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.4" } ], "aliases": [ "CVE-2016-3732", "GHSA-5282-96ff-xx3h" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-he6b-b249-bber" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16040?format=api", "vulnerability_id": "VCID-hgng-uw56-pudk", "summary": "Improper Access Control\nIn Moodle 2.x and 3.x, the question engine allows access to files that should not be available.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8642", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44811", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8642" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/cf0b9432d81ba9d5763e4894f82c95ca9fbf548f", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/cf0b9432d81ba9d5763e4894f82c95ca9fbf548f" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=343275", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=343275" }, { "reference_url": "https://web.archive.org/web/20210123193602/http://www.securityfocus.com/bid/94441", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210123193602/http://www.securityfocus.com/bid/94441" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8642", "reference_id": "CVE-2016-8642", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8642" }, { "reference_url": "https://github.com/advisories/GHSA-x32v-7qw8-cpq8", "reference_id": "GHSA-x32v-7qw8-cpq8", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-x32v-7qw8-cpq8" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52170?format=api", "purl": "pkg:composer/moodle/moodle@2.7.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/98015?format=api", "purl": "pkg:composer/moodle/moodle@2.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/52171?format=api", "purl": "pkg:composer/moodle/moodle@2.9.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/52172?format=api", "purl": "pkg:composer/moodle/moodle@3.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/51931?format=api", "purl": "pkg:composer/moodle/moodle@3.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-44x7-sn7m-4kga" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-937t-wbcy-qfbz" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-mzy3-yscv-9kc4" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.3" } ], "aliases": [ "CVE-2016-8642", "GHSA-x32v-7qw8-cpq8" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hgng-uw56-pudk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13460?format=api", "vulnerability_id": "VCID-hurp-xp2w-wbcp", "summary": "Information Exposure\nThe `/userpix/` page did not escape users' full names, which are included as text when hovering over profile images. Note this page is not linked to by default and its access is restricted.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64372", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64372" }, { "reference_url": "http://packetstormsecurity.com/files/162399/Moodle-3.6.1-Cross-Site-Scripting.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://packetstormsecurity.com/files/162399/Moodle-3.6.1-Cross-Site-Scripting.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3810", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08385", "scoring_system": "epss", "scoring_elements": "0.9244", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3810" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3810", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3810" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=381230#p1536767", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=381230#p1536767" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/49814.txt", "reference_id": "CVE-2019-3810", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/49814.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3810", "reference_id": "CVE-2019-3810", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3810" }, { "reference_url": "https://github.com/advisories/GHSA-wm4w-8vc6-2j4h", "reference_id": "GHSA-wm4w-8vc6-2j4h", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-wm4w-8vc6-2j4h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/98023?format=api", "purl": "pkg:composer/moodle/moodle@3.1.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/56082?format=api", "purl": "pkg:composer/moodle/moodle@3.1.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/56636?format=api", "purl": "pkg:composer/moodle/moodle@3.1.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/56084?format=api", "purl": "pkg:composer/moodle/moodle@3.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/56644?format=api", "purl": "pkg:composer/moodle/moodle@3.4.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/56085?format=api", "purl": "pkg:composer/moodle/moodle@3.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ecj2-c6rx-57a1" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-vabw-g3da-bqbz" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56645?format=api", "purl": "pkg:composer/moodle/moodle@3.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-vabw-g3da-bqbz" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56643?format=api", "purl": "pkg:composer/moodle/moodle@3.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1pfy-xmfx-quf8" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-vabw-g3da-bqbz" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56646?format=api", "purl": "pkg:composer/moodle/moodle@3.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1pfy-xmfx-quf8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-vabw-g3da-bqbz" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.2" } ], "aliases": [ "CVE-2019-3810", "GHSA-wm4w-8vc6-2j4h" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hurp-xp2w-wbcp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12086?format=api", "vulnerability_id": "VCID-j7ab-5rkp-yyeh", "summary": "Server-Side Request Forgery (SSRF)\nMoodle has Server Side Request Forgery in the `filepicker`.", "references": [ { "reference_url": "http://packetstormsecurity.com/files/153766/Moodle-Filepicker-3.5.2-Server-Side-Request-Forgery.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://packetstormsecurity.com/files/153766/Moodle-Filepicker-3.5.2-Server-Side-Request-Forgery.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1042", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.12866", "scoring_system": "epss", "scoring_elements": "0.9416", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1042" }, { "reference_url": "https://github.com/moodle/moodle/commit/f1d1a60e0ac8549c08e66062f3cd0110e4a92e24", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/f1d1a60e0ac8549c08e66062f3cd0110e4a92e24" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=364381", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=364381" }, { "reference_url": "https://web.archive.org/web/20210124134113/http://www.securityfocus.com/bid/102752", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210124134113/http://www.securityfocus.com/bid/102752" }, { "reference_url": "http://www.securityfocus.com/bid/102752", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102752" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/47177.txt", "reference_id": "CVE-2018-1042", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/47177.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1042", "reference_id": "CVE-2018-1042", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1042" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/53853?format=api", "purl": "pkg:composer/moodle/moodle@3.1.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/53854?format=api", "purl": "pkg:composer/moodle/moodle@3.2.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/53855?format=api", "purl": "pkg:composer/moodle/moodle@3.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-vx5n-esff-fqew" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/53865?format=api", "purl": "pkg:composer/moodle/moodle@3.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-vx5n-esff-fqew" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.1" } ], "aliases": [ "CVE-2018-1042", "GHSA-qqjv-mc2v-p7mc" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j7ab-5rkp-yyeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12253?format=api", "vulnerability_id": "VCID-jrf4-ua1a-cfcr", "summary": "Improper Access Control\nUnauthenticated users can trigger custom messages to admin via paypal enrol script. Paypal IPN callback script should only send error emails to admin after request origin was verified, otherwise admin email can be spammed.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1081", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00927", "scoring_system": "epss", "scoring_elements": "0.76389", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1081" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-61392", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-61392" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=367938", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=367938" }, { "reference_url": "http://www.securityfocus.com/bid/103728", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/103728" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1081", "reference_id": "CVE-2018-1081", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1081" }, { "reference_url": "https://github.com/advisories/GHSA-v9xq-vh72-chr4", "reference_id": "GHSA-v9xq-vh72-chr4", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-v9xq-vh72-chr4" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/98023?format=api", "purl": "pkg:composer/moodle/moodle@3.1.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/54281?format=api", "purl": "pkg:composer/moodle/moodle@3.1.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/54282?format=api", "purl": "pkg:composer/moodle/moodle@3.2.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/54283?format=api", "purl": "pkg:composer/moodle/moodle@3.3.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.3.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/54284?format=api", "purl": "pkg:composer/moodle/moodle@3.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.2" } ], "aliases": [ "CVE-2018-1081", "GHSA-v9xq-vh72-chr4" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jrf4-ua1a-cfcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136431?format=api", "vulnerability_id": "VCID-k249-a5wk-2fcs", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59172", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10186" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10186", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10186" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/ea1ac3c7efbddbdb210ea4c75e7156c7d7ee914b", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ea1ac3c7efbddbdb210ea4c75e7156c7d7ee914b" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388567#p1566329", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388567#p1566329" }, { "reference_url": "https://web.archive.org/web/20210125055044/https://www.securityfocus.com/bid/109175", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210125055044/https://www.securityfocus.com/bid/109175" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10186", "reference_id": "CVE-2019-10186", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10186" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142887?format=api", "purl": "pkg:composer/moodle/moodle@3.5.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10186", "GHSA-wv9c-pfpm-4wc5" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k249-a5wk-2fcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/16175?format=api", "vulnerability_id": "VCID-km7q-tdk1-efh5", "summary": "Exposure of Sensitive Information to an Unauthorized Actor\ncalendar/externallib.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 provides calendar-event data without considering whether an activity is hidden, which allows remote authenticated users to obtain sensitive information via a web-service request.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52808", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52808" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2156", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53815", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2156" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/39b851376337b853c8d403dcba64645d16f0a9bd", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/39b851376337b853c8d403dcba64645d16f0a9bd" }, { "reference_url": "https://github.com/moodle/moodle/commit/783e695e00689d67925d6f83722d344c0bd6de94", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/783e695e00689d67925d6f83722d344c0bd6de94" }, { "reference_url": "https://github.com/moodle/moodle/commit/854e7b8ed0a84eb91ca455ca290427d22bc20baf", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/854e7b8ed0a84eb91ca455ca290427d22bc20baf" }, { "reference_url": "https://github.com/moodle/moodle/commit/c631b112d6e729c84f5d559371a399fe54502ba3", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/c631b112d6e729c84f5d559371a399fe54502ba3" }, { "reference_url": "https://github.com/moodle/moodle/commit/d63ac148b95e5f909618e75efd76f6b5032da158", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d63ac148b95e5f909618e75efd76f6b5032da158" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330178", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330178" }, { "reference_url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2156", "reference_id": "CVE-2016-2156", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2156" }, { "reference_url": "https://github.com/advisories/GHSA-h8vc-v44p-5r2q", "reference_id": "GHSA-h8vc-v44p-5r2q", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-h8vc-v44p-5r2q" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2156", "GHSA-h8vc-v44p-5r2q" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-km7q-tdk1-efh5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/141705?format=api", "vulnerability_id": "VCID-kys8-9mu7-w7dn", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18210", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63451", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18210" }, { "reference_url": "https://docs.moodle.org/38/en/Teacher_role", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://docs.moodle.org/38/en/Teacher_role" }, { "reference_url": "https://gist.github.com/Danbardo/4a6b0fe8cb21ec6d7c54e6ac951bdb0a", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://gist.github.com/Danbardo/4a6b0fe8cb21ec6d7c54e6ac951bdb0a" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18210", "reference_id": "CVE-2019-18210", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18210" }, { "reference_url": "https://github.com/advisories/GHSA-q6vw-27c6-jv9c", "reference_id": "GHSA-q6vw-27c6-jv9c", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-q6vw-27c6-jv9c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/154941?format=api", "purl": "pkg:composer/moodle/moodle@3.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.3" } ], "aliases": [ "CVE-2019-18210", "GHSA-q6vw-27c6-jv9c" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kys8-9mu7-w7dn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14791?format=api", "vulnerability_id": "VCID-mkuq-tdbg-t3ce", "summary": "Cross-Site Request Forgery (CSRF)\nThe `delete badge alignment` functionality does not include the necessary token check to prevent a CSRF risk.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0335", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.28916", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0335" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043666", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043666" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/d40cc61eba229c6d1f47b9a525022fbc9136b9f6", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d40cc61eba229c6d1f47b9a525022fbc9136b9f6" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=431103", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=431103" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0335", "reference_id": "CVE-2022-0335", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0335" }, { "reference_url": "https://github.com/advisories/GHSA-xpfv-89vg-r562", "reference_id": "GHSA-xpfv-89vg-r562", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-xpfv-89vg-r562" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/78814?format=api", "purl": "pkg:composer/moodle/moodle@3.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/59248?format=api", "purl": "pkg:composer/moodle/moodle@3.9.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59249?format=api", "purl": "pkg:composer/moodle/moodle@3.10.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-7zmr-qupd-4fg6" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59244?format=api", "purl": "pkg:composer/moodle/moodle@3.11.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.5" } ], "aliases": [ "CVE-2022-0335", "GHSA-xpfv-89vg-r562" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mkuq-tdbg-t3ce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/10936?format=api", "vulnerability_id": "VCID-n2sv-d47m-rkar", "summary": "Insertion of Sensitive Information into Log File\nMoodle does not properly restrict links, which allows remote attackers to obtain sensitive URL information by reading a Referer log.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52651", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52651" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2190", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00437", "scoring_system": "epss", "scoring_elements": "0.63358", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2190" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/1688564a6eee6000013f6e185f704049283ae375", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/1688564a6eee6000013f6e185f704049283ae375" }, { "reference_url": "https://github.com/moodle/moodle/commit/190757854d9ce3b3ce3100dc76de54277f3bdd14", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/190757854d9ce3b3ce3100dc76de54277f3bdd14" }, { "reference_url": "https://github.com/moodle/moodle/commit/314d105c169c67e3ce750f76b21d99983d4a9ff5", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/314d105c169c67e3ce750f76b21d99983d4a9ff5" }, { "reference_url": "https://github.com/moodle/moodle/commit/4d6f159f681882496e05ddacf2561929d2d23f0e", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/4d6f159f681882496e05ddacf2561929d2d23f0e" }, { "reference_url": "https://github.com/moodle/moodle/commit/9f91c23536a31ba2dc91b0ba2ae726b1757a20cb", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/9f91c23536a31ba2dc91b0ba2ae726b1757a20cb" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330181", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330181" }, { "reference_url": "https://web.archive.org/web/20210801130148/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210801130148/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2190", "reference_id": "CVE-2016-2190", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2190" }, { "reference_url": "https://github.com/advisories/GHSA-r9pc-g29w-f86j", "reference_id": "GHSA-r9pc-g29w-f86j", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r9pc-g29w-f86j" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2190", "GHSA-r9pc-g29w-f86j" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n2sv-d47m-rkar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13472?format=api", "vulnerability_id": "VCID-nbpz-vdd1-w3ae", "summary": "Improper Input Validation\nUsers with the \"login as other users\" capability (such as administrators/managers) can access other users' Dashboards, but the JavaScript those other users may have added to their Dashboard was not being escaped when being viewed by the user logging in on their behalf.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3847", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75475", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3847" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3847", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3847" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/070f24d006eab6b958eb083530de159b43c538ed", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/070f24d006eab6b958eb083530de159b43c538ed" }, { "reference_url": "https://github.com/moodle/moodle/commit/93dda3bfd3caaaa8d23fe8ede543f27ef774958d", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/93dda3bfd3caaaa8d23fe8ede543f27ef774958d" }, { "reference_url": "https://github.com/moodle/moodle/commit/a37e26d2efe1ca0e4d8d69c611a748af35b33674", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/a37e26d2efe1ca0e4d8d69c611a748af35b33674" }, { "reference_url": "https://github.com/moodle/moodle/commit/e836242e1c04cd62d0afa4a790074fd245628e7a", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/e836242e1c04cd62d0afa4a790074fd245628e7a" }, { "reference_url": "https://github.com/moodle/moodle/commit/ec3b63c772d6448765c68268234cf36c1a91bcac", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ec3b63c772d6448765c68268234cf36c1a91bcac" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=384010#p1547742", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=384010#p1547742" }, { "reference_url": "https://web.archive.org/web/20200227082922/http://www.securityfocus.com/bid/107489", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20200227082922/http://www.securityfocus.com/bid/107489" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3847", "reference_id": "CVE-2019-3847", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3847" }, { "reference_url": "https://github.com/advisories/GHSA-qrcj-6fjw-3h9h", "reference_id": "GHSA-qrcj-6fjw-3h9h", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-qrcj-6fjw-3h9h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/56665?format=api", "purl": "pkg:composer/moodle/moodle@3.1.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/56661?format=api", "purl": "pkg:composer/moodle/moodle@3.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/56659?format=api", "purl": "pkg:composer/moodle/moodle@3.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/56660?format=api", "purl": "pkg:composer/moodle/moodle@3.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.3" } ], "aliases": [ "CVE-2019-3847", "GHSA-qrcj-6fjw-3h9h" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nbpz-vdd1-w3ae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11350?format=api", "vulnerability_id": "VCID-qhtk-vc1y-ffdz", "summary": "Improper Access Control\nThe user editing form in Moodle allows remote authenticated users to edit profile fields locked by the administrator.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3729", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00379", "scoring_system": "epss", "scoring_elements": "0.59695", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3729" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/05/17/4", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/05/17/4" }, { "reference_url": "http://www.securitytracker.com/id/1035902", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id/1035902" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3729", "reference_id": "CVE-2016-3729", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3729" }, { "reference_url": "https://github.com/advisories/GHSA-g96h-wvrm-c2ww", "reference_id": "GHSA-g96h-wvrm-c2ww", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-g96h-wvrm-c2ww" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52162?format=api", "purl": "pkg:composer/moodle/moodle@2.7.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/52156?format=api", "purl": "pkg:composer/moodle/moodle@2.8.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/52163?format=api", "purl": "pkg:composer/moodle/moodle@2.9.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/52164?format=api", "purl": "pkg:composer/moodle/moodle@3.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.4" } ], "aliases": [ "CVE-2016-3729", "GHSA-g96h-wvrm-c2ww" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qhtk-vc1y-ffdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13468?format=api", "vulnerability_id": "VCID-qnn9-5vhh-nkd8", "summary": "Information Exposure\nPermissions were not correctly checked before loading event information into the calendar's edit event modal popup, so logged in non-guest users could view unauthorised calendar events.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3848", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32503", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3848" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3848", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3848" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=384011#p1547743", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=384011#p1547743" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3848", "reference_id": "CVE-2019-3848", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3848" }, { "reference_url": "https://github.com/advisories/GHSA-45rw-4r25-jvg7", "reference_id": "GHSA-45rw-4r25-jvg7", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-45rw-4r25-jvg7" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/56661?format=api", "purl": "pkg:composer/moodle/moodle@3.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/56659?format=api", "purl": "pkg:composer/moodle/moodle@3.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/56660?format=api", "purl": "pkg:composer/moodle/moodle@3.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.3" } ], "aliases": [ "CVE-2019-3848", "GHSA-45rw-4r25-jvg7" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qnn9-5vhh-nkd8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136432?format=api", "vulnerability_id": "VCID-s8ph-ghzm-q7c5", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36039", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10187" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10187", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10187" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388568#p1566330", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388568#p1566330" }, { "reference_url": "http://www.securityfocus.com/bid/109174", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/109174" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10187", "reference_id": "CVE-2019-10187", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10187" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142887?format=api", "purl": "pkg:composer/moodle/moodle@3.5.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10187", "GHSA-2mg9-hv69-897x" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s8ph-ghzm-q7c5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11347?format=api", "vulnerability_id": "VCID-sctb-y9xc-87c1", "summary": "Cross-Site Request Forgery (CSRF)\nA Cross-site request forgery (CSRF) vulnerability in `markposts.php` in Moodle allows remote attackers to hijack the authentication of users for requests that marks forum posts as read.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-53755", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-53755" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3734", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25995", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3734" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335933" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/01408d619ba89d32f9ad83308990ff9b0374cb57", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/01408d619ba89d32f9ad83308990ff9b0374cb57" }, { "reference_url": "https://github.com/moodle/moodle/commit/1f5c494f761ef7961c449075adf192e149148e1a", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/1f5c494f761ef7961c449075adf192e149148e1a" }, { "reference_url": "https://github.com/moodle/moodle/commit/7873e36f0cc0ccfd1424ff9302eb1ea9e4e74305", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/7873e36f0cc0ccfd1424ff9302eb1ea9e4e74305" }, { "reference_url": "https://github.com/moodle/moodle/commit/d98c24659935c1bdff4b35ec0a85ab1a3ab05d9f", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d98c24659935c1bdff4b35ec0a85ab1a3ab05d9f" }, { "reference_url": "https://github.com/moodle/moodle/commit/e90e0ea5700ee9b016034b74ed7f41787109d1a2", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/e90e0ea5700ee9b016034b74ed7f41787109d1a2" }, { "reference_url": "https://web.archive.org/web/20160703032310/http://www.securitytracker.com/id/1035902", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160703032310/http://www.securitytracker.com/id/1035902" }, { "reference_url": "https://web.archive.org/web/20160930194927/http://www.securityfocus.com/bid/91281", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160930194927/http://www.securityfocus.com/bid/91281" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/05/17/4", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/05/17/4" }, { "reference_url": "http://www.securityfocus.com/bid/91281", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/91281" }, { "reference_url": "http://www.securitytracker.com/id/1035902", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1035902" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3734", "reference_id": "CVE-2016-3734", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3734" }, { "reference_url": "https://github.com/advisories/GHSA-r867-v437-4rrm", "reference_id": "GHSA-r867-v437-4rrm", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r867-v437-4rrm" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52162?format=api", "purl": "pkg:composer/moodle/moodle@2.7.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/52156?format=api", "purl": "pkg:composer/moodle/moodle@2.8.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/52163?format=api", "purl": "pkg:composer/moodle/moodle@2.9.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/52164?format=api", "purl": "pkg:composer/moodle/moodle@3.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.4" } ], "aliases": [ "CVE-2016-3734", "GHSA-r867-v437-4rrm" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sctb-y9xc-87c1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15231?format=api", "vulnerability_id": "VCID-svds-tck8-rqce", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nThe redirect URI in the LTI authorization endpoint required extra sanitizing to prevent reflected XSS and open redirect risks. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8 and earlier unsupported versions are affected.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32478", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03402", "scoring_system": "epss", "scoring_elements": "0.87625", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32478" }, { "reference_url": "https://github.com/moodle/moodle/commit/752ad3d8eb4f9ac22dbf1461aa69d6e0baee503e", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/752ad3d8eb4f9ac22dbf1461aa69d6e0baee503e" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=422314", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=422314" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32478", "reference_id": "CVE-2021-32478", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32478" }, { "reference_url": "https://github.com/advisories/GHSA-78fm-qhh8-8858", "reference_id": "GHSA-78fm-qhh8-8858", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-78fm-qhh8-8858" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59911?format=api", "purl": "pkg:composer/moodle/moodle@3.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/59912?format=api", "purl": "pkg:composer/moodle/moodle@3.10.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.4" } ], "aliases": [ "CVE-2021-32478", "GHSA-78fm-qhh8-8858" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-svds-tck8-rqce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14369?format=api", "vulnerability_id": "VCID-wc31-v1d5-jydh", "summary": "Exposure of Resource to Wrong Sphere\nInsufficient capability checks made it possible to fetch other users' calendar action events.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43560", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36312", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43560" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021519", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021519" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=429100", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=429100" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43560", "reference_id": "CVE-2021-43560", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43560" }, { "reference_url": "https://github.com/advisories/GHSA-g39c-mccf-rxjv", "reference_id": "GHSA-g39c-mccf-rxjv", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-g39c-mccf-rxjv" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/58601?format=api", "purl": "pkg:composer/moodle/moodle@3.11.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fxx8-f2pp-27du" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.4" } ], "aliases": [ "CVE-2021-43560", "GHSA-g39c-mccf-rxjv" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wc31-v1d5-jydh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/157258?format=api", "vulnerability_id": "VCID-x3gw-ztjq-ebbu", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1692", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00159", "scoring_system": "epss", "scoring_elements": "0.36564", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1692" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1692", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1692" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1692", "reference_id": "CVE-2020-1692", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1692" }, { "reference_url": "https://github.com/advisories/GHSA-9328-7pcw-vw69", "reference_id": "GHSA-9328-7pcw-vw69", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-9328-7pcw-vw69" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/76250?format=api", "purl": "pkg:composer/moodle/moodle@3.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.2" } ], "aliases": [ "CVE-2020-1692", "GHSA-9328-7pcw-vw69" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x3gw-ztjq-ebbu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13467?format=api", "vulnerability_id": "VCID-xktx-amv6-gbh2", "summary": "URL Redirection to Untrusted Site (Open Redirect)\nLinks within assignment submission comments would open directly (in the same window). Although links themselves may be valid, opening within the same window and without the no-referrer header policy made them more susceptible to exploits.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3850", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.2204", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3850" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3850", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3850" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/1fc481dd7b09e08e85824c1fe6733b303a36bdce", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/1fc481dd7b09e08e85824c1fe6733b303a36bdce" }, { "reference_url": "https://github.com/moodle/moodle/commit/772c908d40a944efd91d897d524b255626d330d4", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/772c908d40a944efd91d897d524b255626d330d4" }, { "reference_url": "https://github.com/moodle/moodle/commit/907b377e51c32ea37feef53e10684b504e103273", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/907b377e51c32ea37feef53e10684b504e103273" }, { "reference_url": "https://github.com/moodle/moodle/commit/d3f2f990dd3c5d4e6073a77154c6423d1c304647", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d3f2f990dd3c5d4e6073a77154c6423d1c304647" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=384013#p1547745", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=384013#p1547745" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3850", "reference_id": "CVE-2019-3850", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3850" }, { "reference_url": "https://github.com/advisories/GHSA-3fj7-9j8m-7r8g", "reference_id": "GHSA-3fj7-9j8m-7r8g", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-3fj7-9j8m-7r8g" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/56665?format=api", "purl": "pkg:composer/moodle/moodle@3.1.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/56661?format=api", "purl": "pkg:composer/moodle/moodle@3.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/56659?format=api", "purl": "pkg:composer/moodle/moodle@3.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/56660?format=api", "purl": "pkg:composer/moodle/moodle@3.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.3" } ], "aliases": [ "CVE-2019-3850", "GHSA-3fj7-9j8m-7r8g" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xktx-amv6-gbh2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136433?format=api", "vulnerability_id": "VCID-y219-hufv-tkds", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10188", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36039", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10188" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10188", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10188" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388569", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388569" }, { "reference_url": "http://www.securityfocus.com/bid/109178", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/109178" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10188", "reference_id": "CVE-2019-10188", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10188" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142887?format=api", "purl": "pkg:composer/moodle/moodle@3.5.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10188", "GHSA-92q5-2h76-vgmj" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y219-hufv-tkds" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/10939?format=api", "vulnerability_id": "VCID-y3ug-2byz-cfet", "summary": "Improper Access Control\nThe `save_submission` function in `mod/assign/externallib.php` in Moodle allows remote authenticated users to bypass intended due-date restrictions by leveraging the student role for a web-service request.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52901", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52901" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2159", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0021", "scoring_system": "epss", "scoring_elements": "0.4341", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2159" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/0766509ab02353008af62f953f7ebc0f6210411a", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/0766509ab02353008af62f953f7ebc0f6210411a" }, { "reference_url": "https://github.com/moodle/moodle/commit/3c069c16db62d0e0a64137578e92c22d604dd261", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/3c069c16db62d0e0a64137578e92c22d604dd261" }, { "reference_url": "https://github.com/moodle/moodle/commit/711f9468d4e2792afe0f2025ac98c52ee3e4ee71", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/711f9468d4e2792afe0f2025ac98c52ee3e4ee71" }, { "reference_url": "https://github.com/moodle/moodle/commit/dc8421575f35585a7a4fc1c9710dafd1d0483d4e", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/dc8421575f35585a7a4fc1c9710dafd1d0483d4e" }, { "reference_url": "https://github.com/moodle/moodle/commit/ea8987644fdbbee291337263598b0c3c7bf27c36", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ea8987644fdbbee291337263598b0c3c7bf27c36" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330182", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330182" }, { "reference_url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2159", "reference_id": "CVE-2016-2159", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2159" }, { "reference_url": "https://github.com/advisories/GHSA-cw72-69wq-f9f2", "reference_id": "GHSA-cw72-69wq-f9f2", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-cw72-69wq-f9f2" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2159", "GHSA-cw72-69wq-f9f2" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y3ug-2byz-cfet" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12082?format=api", "vulnerability_id": "VCID-y8j3-pw73-c3he", "summary": "Information Exposure\nIn Moodle, the quiz web services allow students to see quiz results when it is prohibited in the settings.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1044", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.39985", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1044" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=364383", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=364383" }, { "reference_url": "http://www.securityfocus.com/bid/102754", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/102754" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1044", "reference_id": "CVE-2018-1044", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1044" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/53853?format=api", "purl": "pkg:composer/moodle/moodle@3.1.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/53854?format=api", "purl": "pkg:composer/moodle/moodle@3.2.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/53855?format=api", "purl": "pkg:composer/moodle/moodle@3.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-vx5n-esff-fqew" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/53865?format=api", "purl": "pkg:composer/moodle/moodle@3.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-useh-xm73-zub8" }, { "vulnerability": "VCID-vx5n-esff-fqew" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yq9c-xav3-e3bv" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.1" } ], "aliases": [ "CVE-2018-1044", "GHSA-332g-xh34-5c96" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y8j3-pw73-c3he" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11400?format=api", "vulnerability_id": "VCID-ypxn-wgkc-nfcm", "summary": "Exposure of Resource to Wrong Sphere\nIn Moodle, searching of arbitrary blogs is possible because a capability check is missing.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7490", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53016", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7490" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=352354", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=352354" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7490", "reference_id": "CVE-2017-7490", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7490" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52359?format=api", "purl": "pkg:composer/moodle/moodle@2.7.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/107495?format=api", "purl": "pkg:composer/moodle/moodle@2.7.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/52360?format=api", "purl": "pkg:composer/moodle/moodle@3.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/53064?format=api", "purl": "pkg:composer/moodle/moodle@3.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/52357?format=api", "purl": "pkg:composer/moodle/moodle@3.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/52750?format=api", "purl": "pkg:composer/moodle/moodle@3.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/52368?format=api", "purl": "pkg:composer/moodle/moodle@3.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-beap-cjmv-s7he" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.3" } ], "aliases": [ "CVE-2017-7490", "GHSA-9x63-m3cc-qf3g" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ypxn-wgkc-nfcm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15641?format=api", "vulnerability_id": "VCID-yyb2-961k-qyet", "summary": "Improper Authentication\nInsufficient capability checks could allow users with the `moodle/site:uploadusers` capability to delete users, without having the necessary `moodle/user:delete` capability.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0985", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.39987", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0985" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064117", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064117" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/addd4f894d8173ec8ff0ae2212d51a1977e7bcad", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/addd4f894d8173ec8ff0ae2212d51a1977e7bcad" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0985", "reference_id": "CVE-2022-0985", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0985" }, { "reference_url": "https://github.com/advisories/GHSA-6q9g-3vfq-q2qj", "reference_id": "GHSA-6q9g-3vfq-q2qj", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-6q9g-3vfq-q2qj" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/60058?format=api", "purl": "pkg:composer/moodle/moodle@3.9.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/60059?format=api", "purl": "pkg:composer/moodle/moodle@3.10.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/60060?format=api", "purl": "pkg:composer/moodle/moodle@3.11.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.6" } ], "aliases": [ "CVE-2022-0985", "GHSA-6q9g-3vfq-q2qj" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yyb2-961k-qyet" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/10938?format=api", "vulnerability_id": "VCID-zmzh-rxks-rye3", "summary": "Cross-site Scripting\nCross-site scripting (XSS) vulnerability in the `advanced-search` feature in `mod_data` in Moodle allows remote attackers to inject arbitrary web script or HTML via a crafted field in a URL.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52727", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52727" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2153", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44992", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-2153" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/87e60e529939c60ef5b07d70c37426d359b2e8a2", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/87e60e529939c60ef5b07d70c37426d359b2e8a2" }, { "reference_url": "https://github.com/moodle/moodle/commit/8f95eac1634b4d84053cef52a03065e620d6adf2", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/8f95eac1634b4d84053cef52a03065e620d6adf2" }, { "reference_url": "https://github.com/moodle/moodle/commit/a5fae3b0d21cc85a7ea2d2c2af8c7fc9acf2fd92", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/a5fae3b0d21cc85a7ea2d2c2af8c7fc9acf2fd92" }, { "reference_url": "https://github.com/moodle/moodle/commit/de60fc23aeeef5631d5718469124af3257383ead", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/de60fc23aeeef5631d5718469124af3257383ead" }, { "reference_url": "https://github.com/moodle/moodle/commit/ead2dd9c161fcfde04ee1fa602e9101a47c53503", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ead2dd9c161fcfde04ee1fa602e9101a47c53503" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=330175", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=330175" }, { "reference_url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160424224349/http://www.securitytracker.com/id/1035333" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/03/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/03/21/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2153", "reference_id": "CVE-2016-2153", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2153" }, { "reference_url": "https://github.com/advisories/GHSA-mj85-3hqq-r6r9", "reference_id": "GHSA-mj85-3hqq-r6r9", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-mj85-3hqq-r6r9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/51641?format=api", "purl": "pkg:composer/moodle/moodle@2.7.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/51642?format=api", "purl": "pkg:composer/moodle/moodle@2.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/51643?format=api", "purl": "pkg:composer/moodle/moodle@2.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/51644?format=api", "purl": "pkg:composer/moodle/moodle@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.3" } ], "aliases": [ "CVE-2016-2153", "GHSA-mj85-3hqq-r6r9" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zmzh-rxks-rye3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15232?format=api", "vulnerability_id": "VCID-zn3y-sq7h-83h9", "summary": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')\nAn SQL injection risk existed on sites with MNet enabled and configured, via an XML-RPC call from the connected peer host. Note that this required site administrator access or access to the keypair. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32474", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00847", "scoring_system": "epss", "scoring_elements": "0.75155", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32474" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=422308", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=422308" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32474", "reference_id": "CVE-2021-32474", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32474" }, { "reference_url": "https://github.com/advisories/GHSA-rvmc-8gmg-ggqr", "reference_id": "GHSA-rvmc-8gmg-ggqr", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-rvmc-8gmg-ggqr" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/59910?format=api", "purl": "pkg:composer/moodle/moodle@3.5.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59911?format=api", "purl": "pkg:composer/moodle/moodle@3.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/59912?format=api", "purl": "pkg:composer/moodle/moodle@3.10.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.4" } ], "aliases": [ "CVE-2021-32474", "GHSA-rvmc-8gmg-ggqr" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zn3y-sq7h-83h9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11250?format=api", "vulnerability_id": "VCID-zqkc-uq6f-6yc3", "summary": "Weak Password Recovery Mechanism for Forgotten Password\nIn Moodle, web service tokens are not invalidated when the user password is changed or forced to be changed.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7038", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00243", "scoring_system": "epss", "scoring_elements": "0.47679", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7038" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=339631", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=339631" }, { "reference_url": "http://www.securityfocus.com/bid/93174", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/93174" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7038", "reference_id": "CVE-2016-7038", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7038" }, { "reference_url": "https://github.com/advisories/GHSA-2phx-w35g-x9vm", "reference_id": "GHSA-2phx-w35g-x9vm", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-2phx-w35g-x9vm" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52159?format=api", "purl": "pkg:composer/moodle/moodle@2.7.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/98015?format=api", "purl": "pkg:composer/moodle/moodle@2.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/52160?format=api", "purl": "pkg:composer/moodle/moodle@2.9.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/52161?format=api", "purl": "pkg:composer/moodle/moodle@3.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/51930?format=api", "purl": "pkg:composer/moodle/moodle@3.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-44x7-sn7m-4kga" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-937t-wbcy-qfbz" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-mzy3-yscv-9kc4" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.2" } ], "aliases": [ "CVE-2016-7038", "GHSA-2phx-w35g-x9vm" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zqkc-uq6f-6yc3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/11254?format=api", "vulnerability_id": "VCID-zyg8-e1k7-jqd2", "summary": "Improper Input Validation\nThere is incorrect sanitization of attributes in forums.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2576", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52564", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2576" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=345912", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=345912" }, { "reference_url": "http://www.securityfocus.com/bid/95649", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/95649" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2576", "reference_id": "CVE-2017-2576", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2576" }, { "reference_url": "https://github.com/advisories/GHSA-cjrf-xg77-chpw", "reference_id": "GHSA-cjrf-xg77-chpw", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-cjrf-xg77-chpw" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52173?format=api", "purl": "pkg:composer/moodle/moodle@2.7.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/98015?format=api", "purl": "pkg:composer/moodle/moodle@2.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/98018?format=api", "purl": "pkg:composer/moodle/moodle@3.0.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/52174?format=api", "purl": "pkg:composer/moodle/moodle@3.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/52166?format=api", "purl": "pkg:composer/moodle/moodle@3.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2avg-qvn9-bkdn" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-44x7-sn7m-4kga" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-6xjm-4pjx-xuh7" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-937t-wbcy-qfbz" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d17g-sacy-nkfw" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qfmd-5exc-c3f3" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u843-6ku8-6bh7" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x2e5-m5rs-7qfr" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/52167?format=api", "purl": "pkg:composer/moodle/moodle@3.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-44x7-sn7m-4kga" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-7gra-fj8d-byej" }, { "vulnerability": "VCID-937t-wbcy-qfbz" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-beap-cjmv-s7he" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-d9xk-d7zc-rbeq" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-dxn4-ry85-43dp" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ewcg-abf2-5uff" }, { "vulnerability": "VCID-ez7x-sprg-effa" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gt8k-6dg8-qqa8" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-k72d-w9wa-m7b5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-qf7h-3hbp-5bbb" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.2.1" } ], "aliases": [ "CVE-2017-2576", "GHSA-cjrf-xg77-chpw" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zyg8-e1k7-jqd2" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/10851?format=api", "vulnerability_id": "VCID-tjb7-7hy5-63hg", "summary": "Information Exposure\nThe (1) `core_enrol_get_course_enrolment_methods` and (2) `enrol_self_get_instance_info` web services in Moodle do not consider the `moodle/course:viewhiddencourses` capability, which allows remote authenticated users to obtain sensitive information via a web-service request.", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52072", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52072" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176502.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176502.html" }, { "reference_url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176436.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176436.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-0724", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00578", "scoring_system": "epss", "scoring_elements": "0.6915", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-0724" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/4323a973d57a41e19e039a850ad71ebcabae73c1", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/4323a973d57a41e19e039a850ad71ebcabae73c1" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=326205", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=326205" }, { "reference_url": "https://web.archive.org/web/20210622172957/http://www.securitytracker.com/id/1034694", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210622172957/http://www.securitytracker.com/id/1034694" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/01/18/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/01/18/1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0724", "reference_id": "CVE-2016-0724", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0724" }, { "reference_url": "https://github.com/advisories/GHSA-hjrj-7wcj-7j3c", "reference_id": "GHSA-hjrj-7wcj-7j3c", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-hjrj-7wcj-7j3c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94776?format=api", "purl": "pkg:composer/moodle/moodle@2.7.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-5k7a-c53n-akbt" }, { "vulnerability": "VCID-6j1h-d82g-6qg7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-95ha-th5r-xycw" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-bar7-ac9c-y3ca" }, { "vulnerability": "VCID-c4kh-k9n2-17a1" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kh3d-k28s-7ua5" }, { "vulnerability": "VCID-km7q-tdk1-efh5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mgk6-79z4-u3g5" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-nhpx-rrw3-ekhq" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wupr-23ux-ekdt" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-xmxy-88ec-cqdd" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yex8-nh7u-akca" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-z4pf-uwf6-8bga" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/51498?format=api", "purl": "pkg:composer/moodle/moodle@2.7.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-1nd2-ew9g-tfek" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-5k7a-c53n-akbt" }, { "vulnerability": "VCID-6j1h-d82g-6qg7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-bar7-ac9c-y3ca" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-km7q-tdk1-efh5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-n2sv-d47m-rkar" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y3ug-2byz-cfet" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zmzh-rxks-rye3" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/51492?format=api", "purl": "pkg:composer/moodle/moodle@2.8.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1nd2-ew9g-tfek" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-5k7a-c53n-akbt" }, { "vulnerability": "VCID-6j1h-d82g-6qg7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-bar7-ac9c-y3ca" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-km7q-tdk1-efh5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-n2sv-d47m-rkar" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-nc76-hv9c-zubq" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-tnrm-xzpk-cudr" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y3ug-2byz-cfet" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zmzh-rxks-rye3" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/51493?format=api", "purl": "pkg:composer/moodle/moodle@2.9.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1nd2-ew9g-tfek" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-5k7a-c53n-akbt" }, { "vulnerability": "VCID-6j1h-d82g-6qg7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-bar7-ac9c-y3ca" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-km7q-tdk1-efh5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-n2sv-d47m-rkar" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-nc76-hv9c-zubq" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-tnrm-xzpk-cudr" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y3ug-2byz-cfet" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zmzh-rxks-rye3" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/51494?format=api", "purl": "pkg:composer/moodle/moodle@3.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hht-sfqa-wkan" }, { "vulnerability": "VCID-1nd2-ew9g-tfek" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3gup-tvzm-z7dt" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4nnu-qu33-27gx" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-4t6w-wvj2-ffek" }, { "vulnerability": "VCID-5k7a-c53n-akbt" }, { "vulnerability": "VCID-6j1h-d82g-6qg7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-aazg-a3fs-nub3" }, { "vulnerability": "VCID-ahbw-7fj3-eugs" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-am73-3uvc-r3bf" }, { "vulnerability": "VCID-b3hr-pfv8-uqf6" }, { "vulnerability": "VCID-bar7-ac9c-y3ca" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-cr7f-vvmv-aqfr" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-eb8w-rqef-sqca" }, { "vulnerability": "VCID-ehpf-6ra7-syfy" }, { "vulnerability": "VCID-fgw6-c8p8-u7hw" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gtpy-dhmm-mufn" }, { "vulnerability": "VCID-he6b-b249-bber" }, { "vulnerability": "VCID-hgng-uw56-pudk" }, { "vulnerability": "VCID-hurp-xp2w-wbcp" }, { "vulnerability": "VCID-j7ab-5rkp-yyeh" }, { "vulnerability": "VCID-jrf4-ua1a-cfcr" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-km7q-tdk1-efh5" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-n2sv-d47m-rkar" }, { "vulnerability": "VCID-nbpz-vdd1-w3ae" }, { "vulnerability": "VCID-nc76-hv9c-zubq" }, { "vulnerability": "VCID-qhtk-vc1y-ffdz" }, { "vulnerability": "VCID-qnn9-5vhh-nkd8" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-sctb-y9xc-87c1" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-tnrm-xzpk-cudr" }, { "vulnerability": "VCID-ua62-ymzq-4ff4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-xatq-q64s-gugm" }, { "vulnerability": "VCID-xktx-amv6-gbh2" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-y3ug-2byz-cfet" }, { "vulnerability": "VCID-y8j3-pw73-c3he" }, { "vulnerability": "VCID-ypxn-wgkc-nfcm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zmzh-rxks-rye3" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" }, { "vulnerability": "VCID-zqkc-uq6f-6yc3" }, { "vulnerability": "VCID-zyg8-e1k7-jqd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.0.2" } ], "aliases": [ "CVE-2016-0724", "GHSA-hjrj-7wcj-7j3c" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tjb7-7hy5-63hg" } ], "risk_score": "4.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.12" }