Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/57253?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/57253?format=api", "purl": "pkg:composer/moodle/moodle@3.6.4", "type": "composer", "namespace": "moodle", "name": "moodle", "version": "3.6.4", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "3.9.15", "latest_non_vulnerable_version": "5.1.2", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/139661?format=api", "vulnerability_id": "VCID-1694-95s2-63a9", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14883", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52577", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14883" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14883", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14883" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=393586#p1586750", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=393586#p1586750" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14883", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14883" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/154936?format=api", "purl": "pkg:composer/moodle/moodle@3.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/154941?format=api", "purl": "pkg:composer/moodle/moodle@3.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.3" } ], "aliases": [ "CVE-2019-14883", "GHSA-774q-wfcp-vc2q" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1694-95s2-63a9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/139662?format=api", "vulnerability_id": "VCID-19gu-j1d4-4uab", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14884", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57302", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14884" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14884", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14884" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=393587#p1586751", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=393587#p1586751" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14884", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14884" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/154936?format=api", "purl": "pkg:composer/moodle/moodle@3.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/154941?format=api", "purl": "pkg:composer/moodle/moodle@3.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/417438?format=api", "purl": "pkg:composer/moodle/moodle@3.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.4" } ], "aliases": [ "CVE-2019-14884", "GHSA-3xh5-5v5v-mfgm" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-19gu-j1d4-4uab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/170186?format=api", "vulnerability_id": "VCID-4s7h-83dq-aua7", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.34928", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20184" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=417167", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=417167" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20184", "reference_id": "CVE-2021-20184", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20184" }, { "reference_url": "https://github.com/advisories/GHSA-mm73-86f9-5x5c", "reference_id": "GHSA-mm73-86f9-5x5c", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-mm73-86f9-5x5c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77485?format=api", "purl": "pkg:composer/moodle/moodle@3.8.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/77484?format=api", "purl": "pkg:composer/moodle/moodle@3.9.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/63969?format=api", "purl": "pkg:composer/moodle/moodle@3.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-6231-6qrp-bqag" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gj75-c27j-ekbu" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.1" } ], "aliases": [ "CVE-2021-20184", "GHSA-mm73-86f9-5x5c" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4s7h-83dq-aua7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/139658?format=api", "vulnerability_id": "VCID-73mw-h65y-fqg6", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14880", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42183", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14880" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14880", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14880" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14880", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14880" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/154936?format=api", "purl": "pkg:composer/moodle/moodle@3.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/154941?format=api", "purl": "pkg:composer/moodle/moodle@3.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.3" } ], "aliases": [ "CVE-2019-14880", "GHSA-rv62-6f56-j83w" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-73mw-h65y-fqg6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/170185?format=api", "vulnerability_id": "VCID-a7n4-f1nk-vqec", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20183", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59223", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20183" }, { "reference_url": "https://github.com/moodle/moodle/commit/dc9de7b0d487b73c23c221dc0b8b6e01654921f3", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/dc9de7b0d487b73c23c221dc0b8b6e01654921f3" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=417166", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=417166" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20183", "reference_id": "CVE-2021-20183", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20183" }, { "reference_url": "https://github.com/advisories/GHSA-xhfx-rm8q-c3xv", "reference_id": "GHSA-xhfx-rm8q-c3xv", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-xhfx-rm8q-c3xv" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/63969?format=api", "purl": "pkg:composer/moodle/moodle@3.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-6231-6qrp-bqag" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gj75-c27j-ekbu" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/77487?format=api", "purl": "pkg:composer/moodle/moodle@4.0.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-91z3-7wza-c7gs" }, { "vulnerability": "VCID-bvne-5ym9-byaz" }, { "vulnerability": "VCID-zhhy-m421-nffk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.0.0-beta" } ], "aliases": [ "CVE-2021-20183", "GHSA-xhfx-rm8q-c3xv" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a7n4-f1nk-vqec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14790?format=api", "vulnerability_id": "VCID-cf2z-a3h4-jkhf", "summary": "Incorrect Authorization\nThe `calendar:manageentries` capability allowed managers to access or modify any calendar event, but should have been restricted from accessing user level events.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0333", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.484", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0333" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043663", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043663" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/2ee27313cea0d7073f5a6a35eccdfddcb3a9adad", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/2ee27313cea0d7073f5a6a35eccdfddcb3a9adad" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=431100", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=431100" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0333", "reference_id": "CVE-2022-0333", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0333" }, { "reference_url": "https://github.com/advisories/GHSA-m434-m5pv-p35w", "reference_id": "GHSA-m434-m5pv-p35w", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-m434-m5pv-p35w" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/78814?format=api", "purl": "pkg:composer/moodle/moodle@3.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/59248?format=api", "purl": "pkg:composer/moodle/moodle@3.9.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59249?format=api", "purl": "pkg:composer/moodle/moodle@3.10.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-7zmr-qupd-4fg6" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59244?format=api", "purl": "pkg:composer/moodle/moodle@3.11.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.5" } ], "aliases": [ "CVE-2022-0333", "GHSA-m434-m5pv-p35w" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cf2z-a3h4-jkhf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136434?format=api", "vulnerability_id": "VCID-d2au-r7m3-cyc8", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10189", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36039", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10189" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10189", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10189" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388570", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388570" }, { "reference_url": "http://www.securityfocus.com/bid/109271", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/109271" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10189", "reference_id": "CVE-2019-10189", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10189" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10189", "GHSA-h7xp-7fjp-ghhc" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d2au-r7m3-cyc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14366?format=api", "vulnerability_id": "VCID-e52k-bb2k-tbgh", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nA URL parameter in the filetype site administrator tool requires extra sanitizing to prevent a reflected XSS risk.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43558", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00159", "scoring_system": "epss", "scoring_elements": "0.36515", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43558" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021515", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021515" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=429097", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=429097" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43558", "reference_id": "CVE-2021-43558", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43558" }, { "reference_url": "https://github.com/advisories/GHSA-wpfp-q843-v772", "reference_id": "GHSA-wpfp-q843-v772", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-wpfp-q843-v772" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/58601?format=api", "purl": "pkg:composer/moodle/moodle@3.11.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fxx8-f2pp-27du" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.4" } ], "aliases": [ "CVE-2021-43558", "GHSA-wpfp-q843-v772" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e52k-bb2k-tbgh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14787?format=api", "vulnerability_id": "VCID-fj1x-be1c-h3c4", "summary": "Exposure of Resource to Wrong Sphere\nInsufficient capability checks could lead to users accessing their grade report for courses where they does not have the required `gradereport/user:view` capability.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0334", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.3509", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0334" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043664", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043664" }, { "reference_url": "https://github.com/moodle/moodle/commit/1964d68f8500ea3c7b776fa8a2af6266ed109f84", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/1964d68f8500ea3c7b776fa8a2af6266ed109f84" }, { "reference_url": "https://github.com/moodle/moodle/commit/6d18f136ae88ec97e351a723df570816a959ec68", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/6d18f136ae88ec97e351a723df570816a959ec68" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=431102", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=431102" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0334", "reference_id": "CVE-2022-0334", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0334" }, { "reference_url": "https://github.com/advisories/GHSA-93pj-4p65-qmr9", "reference_id": "GHSA-93pj-4p65-qmr9", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-93pj-4p65-qmr9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/78814?format=api", "purl": "pkg:composer/moodle/moodle@3.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/59248?format=api", "purl": "pkg:composer/moodle/moodle@3.9.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59249?format=api", "purl": "pkg:composer/moodle/moodle@3.10.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-7zmr-qupd-4fg6" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59244?format=api", "purl": "pkg:composer/moodle/moodle@3.11.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.5" } ], "aliases": [ "CVE-2022-0334", "GHSA-93pj-4p65-qmr9" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fj1x-be1c-h3c4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/139657?format=api", "vulnerability_id": "VCID-fnen-jbsf-3kax", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14879", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00205", "scoring_system": "epss", "scoring_elements": "0.42626", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14879" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14879", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14879" }, { "reference_url": "https://github.com/moodle/moodle/commit/7b5f4a62c18fd5bad6956828aade23e1f15b4be3", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/7b5f4a62c18fd5bad6956828aade23e1f15b4be3" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14879", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14879" }, { "reference_url": "https://github.com/advisories/GHSA-g9m2-c2x5-fr2v", "reference_id": "GHSA-g9m2-c2x5-fr2v", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-g9m2-c2x5-fr2v" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/154936?format=api", "purl": "pkg:composer/moodle/moodle@3.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/154941?format=api", "purl": "pkg:composer/moodle/moodle@3.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.3" } ], "aliases": [ "CVE-2019-14879", "GHSA-g9m2-c2x5-fr2v" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fnen-jbsf-3kax" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14365?format=api", "vulnerability_id": "VCID-fvkk-381y-1kcb", "summary": "Cross-Site Request Forgery (CSRF)\nThe `delete related badge` functionality does not include the necessary token check to prevent a CSRF risk.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43559", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.28916", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43559" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021517", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021517" }, { "reference_url": "https://github.com/moodle/moodle/commit/20d41ebae4eb28269298504c68db511a05ec4969", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/20d41ebae4eb28269298504c68db511a05ec4969" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=429099", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=429099" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43559", "reference_id": "CVE-2021-43559", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43559" }, { "reference_url": "https://github.com/advisories/GHSA-3jrj-x6cj-97cp", "reference_id": "GHSA-3jrj-x6cj-97cp", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-3jrj-x6cj-97cp" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/58601?format=api", "purl": "pkg:composer/moodle/moodle@3.11.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fxx8-f2pp-27du" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.4" } ], "aliases": [ "CVE-2021-43559", "GHSA-3jrj-x6cj-97cp" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fvkk-381y-1kcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154286?format=api", "vulnerability_id": "VCID-fx3x-sc7h-guhb", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14321", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.39399", "scoring_system": "epss", "scoring_elements": "0.97367", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14321" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/d07fb8b9e8bf47fe60ad2aea553329bd1fb96e37", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d07fb8b9e8bf47fe60ad2aea553329bd1fb96e37" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=407393", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=407393" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14321", "reference_id": "CVE-2020-14321", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14321" }, { "reference_url": "https://github.com/advisories/GHSA-9q29-jcjw-fw7h", "reference_id": "GHSA-9q29-jcjw-fw7h", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-9q29-jcjw-fw7h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77369?format=api", "purl": "pkg:composer/moodle/moodle@3.7.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/77365?format=api", "purl": "pkg:composer/moodle/moodle@3.8.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/77364?format=api", "purl": "pkg:composer/moodle/moodle@3.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mk9g-47tz-tfcv" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-pfv8-kvcb-5udc" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.1" } ], "aliases": [ "CVE-2020-14321", "GHSA-9q29-jcjw-fw7h" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fx3x-sc7h-guhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/139660?format=api", "vulnerability_id": "VCID-gx6x-ebpv-k7er", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14882", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00379", "scoring_system": "epss", "scoring_elements": "0.59655", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14882" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14882", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14882" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=393585#p1586747", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=393585#p1586747" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14882", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14882" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/154936?format=api", "purl": "pkg:composer/moodle/moodle@3.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/154937?format=api", "purl": "pkg:composer/moodle/moodle@3.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/154941?format=api", "purl": "pkg:composer/moodle/moodle@3.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/417438?format=api", "purl": "pkg:composer/moodle/moodle@3.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.4" } ], "aliases": [ "CVE-2019-14882", "GHSA-m98q-q59p-r9fv" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gx6x-ebpv-k7er" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/151908?format=api", "vulnerability_id": "VCID-hbss-w1t3-sya7", "summary": "", "references": [ { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-68410", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-68410" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10738", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0234", "scoring_system": "epss", "scoring_elements": "0.85131", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10738" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10738", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10738" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/2cd534a7df3867813e3aad42db615865149a58c6", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/2cd534a7df3867813e3aad42db615865149a58c6" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=403513", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=403513" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10738", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10738" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/253171?format=api", "purl": "pkg:composer/moodle/moodle@3.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/78815?format=api", "purl": "pkg:composer/moodle/moodle@3.7.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/78813?format=api", "purl": "pkg:composer/moodle/moodle@3.8.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-p8kp-q9s2-w3dq" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.3" } ], "aliases": [ "CVE-2020-10738", "GHSA-vr6v-g96p-cjc3" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hbss-w1t3-sya7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136431?format=api", "vulnerability_id": "VCID-k249-a5wk-2fcs", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59172", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10186" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10186", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10186" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/ea1ac3c7efbddbdb210ea4c75e7156c7d7ee914b", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/ea1ac3c7efbddbdb210ea4c75e7156c7d7ee914b" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388567#p1566329", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388567#p1566329" }, { "reference_url": "https://web.archive.org/web/20210125055044/https://www.securityfocus.com/bid/109175", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20210125055044/https://www.securityfocus.com/bid/109175" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10186", "reference_id": "CVE-2019-10186", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10186" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10186", "GHSA-wv9c-pfpm-4wc5" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k249-a5wk-2fcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/141705?format=api", "vulnerability_id": "VCID-kys8-9mu7-w7dn", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18210", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0044", "scoring_system": "epss", "scoring_elements": "0.63451", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18210" }, { "reference_url": "https://docs.moodle.org/38/en/Teacher_role", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://docs.moodle.org/38/en/Teacher_role" }, { "reference_url": "https://gist.github.com/Danbardo/4a6b0fe8cb21ec6d7c54e6ac951bdb0a", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://gist.github.com/Danbardo/4a6b0fe8cb21ec6d7c54e6ac951bdb0a" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18210", "reference_id": "CVE-2019-18210", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18210" }, { "reference_url": "https://github.com/advisories/GHSA-q6vw-27c6-jv9c", "reference_id": "GHSA-q6vw-27c6-jv9c", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-q6vw-27c6-jv9c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/154941?format=api", "purl": "pkg:composer/moodle/moodle@3.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.3" } ], "aliases": [ "CVE-2019-18210", "GHSA-q6vw-27c6-jv9c" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kys8-9mu7-w7dn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14791?format=api", "vulnerability_id": "VCID-mkuq-tdbg-t3ce", "summary": "Cross-Site Request Forgery (CSRF)\nThe `delete badge alignment` functionality does not include the necessary token check to prevent a CSRF risk.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0335", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.28916", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0335" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043666", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2043666" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/d40cc61eba229c6d1f47b9a525022fbc9136b9f6", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d40cc61eba229c6d1f47b9a525022fbc9136b9f6" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=431103", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=431103" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0335", "reference_id": "CVE-2022-0335", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0335" }, { "reference_url": "https://github.com/advisories/GHSA-xpfv-89vg-r562", "reference_id": "GHSA-xpfv-89vg-r562", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-xpfv-89vg-r562" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/78814?format=api", "purl": "pkg:composer/moodle/moodle@3.9.0-beta", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.0-beta" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/59248?format=api", "purl": "pkg:composer/moodle/moodle@3.9.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59249?format=api", "purl": "pkg:composer/moodle/moodle@3.10.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-7zmr-qupd-4fg6" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59244?format=api", "purl": "pkg:composer/moodle/moodle@3.11.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.5" } ], "aliases": [ "CVE-2022-0335", "GHSA-xpfv-89vg-r562" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mkuq-tdbg-t3ce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136432?format=api", "vulnerability_id": "VCID-s8ph-ghzm-q7c5", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36039", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10187" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10187", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10187" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388568#p1566330", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388568#p1566330" }, { "reference_url": "http://www.securityfocus.com/bid/109174", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/109174" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10187", "reference_id": "CVE-2019-10187", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10187" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10187", "GHSA-2mg9-hv69-897x" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s8ph-ghzm-q7c5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15231?format=api", "vulnerability_id": "VCID-svds-tck8-rqce", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nThe redirect URI in the LTI authorization endpoint required extra sanitizing to prevent reflected XSS and open redirect risks. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8 and earlier unsupported versions are affected.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32478", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03402", "scoring_system": "epss", "scoring_elements": "0.87625", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-32478" }, { "reference_url": "https://github.com/moodle/moodle/commit/752ad3d8eb4f9ac22dbf1461aa69d6e0baee503e", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/752ad3d8eb4f9ac22dbf1461aa69d6e0baee503e" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=422314", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=422314" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32478", "reference_id": "CVE-2021-32478", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32478" }, { "reference_url": "https://github.com/advisories/GHSA-78fm-qhh8-8858", "reference_id": "GHSA-78fm-qhh8-8858", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-78fm-qhh8-8858" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/59911?format=api", "purl": "pkg:composer/moodle/moodle@3.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/59912?format=api", "purl": "pkg:composer/moodle/moodle@3.10.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-634y-94qn-huhz" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-k253-m5ud-8bgc" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.4" } ], "aliases": [ "CVE-2021-32478", "GHSA-78fm-qhh8-8858" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-svds-tck8-rqce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14369?format=api", "vulnerability_id": "VCID-wc31-v1d5-jydh", "summary": "Exposure of Resource to Wrong Sphere\nInsufficient capability checks made it possible to fetch other users' calendar action events.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43560", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00158", "scoring_system": "epss", "scoring_elements": "0.36312", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-43560" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021519", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021519" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=429100", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=429100" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43560", "reference_id": "CVE-2021-43560", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43560" }, { "reference_url": "https://github.com/advisories/GHSA-g39c-mccf-rxjv", "reference_id": "GHSA-g39c-mccf-rxjv", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-g39c-mccf-rxjv" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58604?format=api", "purl": "pkg:composer/moodle/moodle@3.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/58599?format=api", "purl": "pkg:composer/moodle/moodle@3.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/58600?format=api", "purl": "pkg:composer/moodle/moodle@3.10.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/58601?format=api", "purl": "pkg:composer/moodle/moodle@3.11.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2znf-gepe-hbed" }, { "vulnerability": "VCID-4c27-utgj-47e9" }, { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fxx8-f2pp-27du" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.4" } ], "aliases": [ "CVE-2021-43560", "GHSA-g39c-mccf-rxjv" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wc31-v1d5-jydh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/157258?format=api", "vulnerability_id": "VCID-x3gw-ztjq-ebbu", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1692", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00159", "scoring_system": "epss", "scoring_elements": "0.36564", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1692" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1692", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1692" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1692", "reference_id": "CVE-2020-1692", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1692" }, { "reference_url": "https://github.com/advisories/GHSA-9328-7pcw-vw69", "reference_id": "GHSA-9328-7pcw-vw69", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-9328-7pcw-vw69" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/76250?format=api", "purl": "pkg:composer/moodle/moodle@3.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.2" } ], "aliases": [ "CVE-2020-1692", "GHSA-9328-7pcw-vw69" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x3gw-ztjq-ebbu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/136433?format=api", "vulnerability_id": "VCID-y219-hufv-tkds", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10188", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36039", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10188" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10188", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10188" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=388569", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=388569" }, { "reference_url": "http://www.securityfocus.com/bid/109178", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/109178" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10188", "reference_id": "CVE-2019-10188", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10188" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142888?format=api", "purl": "pkg:composer/moodle/moodle@3.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/142889?format=api", "purl": "pkg:composer/moodle/moodle@3.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-5n6q-kt6b-zfbc" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8ct-r1tq-tfdr" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gu1a-396c-7bgp" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-u5tg-a91q-ckf3" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.7.1" } ], "aliases": [ "CVE-2019-10188", "GHSA-92q5-2h76-vgmj" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y219-hufv-tkds" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15641?format=api", "vulnerability_id": "VCID-yyb2-961k-qyet", "summary": "Improper Authentication\nInsufficient capability checks could allow users with the `moodle/site:uploadusers` capability to delete users, without having the necessary `moodle/user:delete` capability.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0985", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.39987", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0985" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064117", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064117" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/addd4f894d8173ec8ff0ae2212d51a1977e7bcad", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/addd4f894d8173ec8ff0ae2212d51a1977e7bcad" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0985", "reference_id": "CVE-2022-0985", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0985" }, { "reference_url": "https://github.com/advisories/GHSA-6q9g-3vfq-q2qj", "reference_id": "GHSA-6q9g-3vfq-q2qj", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-6q9g-3vfq-q2qj" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/60058?format=api", "purl": "pkg:composer/moodle/moodle@3.9.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.9.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/60059?format=api", "purl": "pkg:composer/moodle/moodle@3.10.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.10.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/60060?format=api", "purl": "pkg:composer/moodle/moodle@3.11.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5hq2-2rn1-73g7" }, { "vulnerability": "VCID-86zg-df5e-33gn" }, { "vulnerability": "VCID-8vb6-115w-hyfc" }, { "vulnerability": "VCID-m21y-dkas-wyc8" }, { "vulnerability": "VCID-ph9y-fgs2-byez" }, { "vulnerability": "VCID-sxen-ree9-kbfr" }, { "vulnerability": "VCID-t8r2-hgvx-rqf9" }, { "vulnerability": "VCID-tv3r-7qy8-cqg4" }, { "vulnerability": "VCID-xga2-af6c-jkd1" }, { "vulnerability": "VCID-ydbx-2sup-b7cy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.11.6" } ], "aliases": [ "CVE-2022-0985", "GHSA-6q9g-3vfq-q2qj" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yyb2-961k-qyet" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13755?format=api", "vulnerability_id": "VCID-3r3j-bqzm-5ufz", "summary": "Improper Access Control\nA web service fetching messages was not restricted to the current user's conversations.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10154", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.4671", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10154" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10154", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10154" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/2904a7f851da8e66be12f41d55068bf07817fbd6", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/2904a7f851da8e66be12f41d55068bf07817fbd6" }, { "reference_url": "https://github.com/moodle/moodle/commit/a3d19efab4aff83c07db9f0ad34c8f0e1f29c64c", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/a3d19efab4aff83c07db9f0ad34c8f0e1f29c64c" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=386521", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=386521" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10154", "reference_id": "CVE-2019-10154", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10154" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/57253?format=api", "purl": "pkg:composer/moodle/moodle@3.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.4" } ], "aliases": [ "CVE-2019-10154", "GHSA-ww45-x87c-wgff" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3r3j-bqzm-5ufz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13756?format=api", "vulnerability_id": "VCID-qfmd-5exc-c3f3", "summary": "Improper Input Validation\nThe size of users' private file uploads via email were not correctly checked, so their quota allowance could be exceeded.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10134", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00179", "scoring_system": "epss", "scoring_elements": "0.39154", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10134" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10134", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10134" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=386524", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=386524" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10134", "reference_id": "CVE-2019-10134", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10134" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/57250?format=api", "purl": "pkg:composer/moodle/moodle@3.1.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/57251?format=api", "purl": "pkg:composer/moodle/moodle@3.4.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/57252?format=api", "purl": "pkg:composer/moodle/moodle@3.5.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/57253?format=api", "purl": "pkg:composer/moodle/moodle@3.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.4" } ], "aliases": [ "CVE-2019-10134", "GHSA-j8wr-7xxj-c2fr" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qfmd-5exc-c3f3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13753?format=api", "vulnerability_id": "VCID-x2e5-m5rs-7qfr", "summary": "URL Redirection to Untrusted Site (Open Redirect)\nThe form to upload cohorts contained a redirect field, which was not restricted to internal URLs.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10133", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35758", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10133" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10133", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10133" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/5a89ac9640b3a695720845b6ddeff65e69a289fc", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/5a89ac9640b3a695720845b6ddeff65e69a289fc" }, { "reference_url": "https://github.com/moodle/moodle/commit/a6258d0934f707b1d033f50fb41ffbcf45bb2102", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/a6258d0934f707b1d033f50fb41ffbcf45bb2102" }, { "reference_url": "https://github.com/moodle/moodle/commit/c509d108216524887c7ca08b1c451054d669ea75", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/c509d108216524887c7ca08b1c451054d669ea75" }, { "reference_url": "https://github.com/moodle/moodle/commit/cd6fb4322b6b1914c05f05033a71ed060f875fd4", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/cd6fb4322b6b1914c05f05033a71ed060f875fd4" }, { "reference_url": "https://github.com/moodle/moodle/commit/d5067bffd230d733ad24f6aeaa56aaa17eca5bfb", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d5067bffd230d733ad24f6aeaa56aaa17eca5bfb" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=386523", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=386523" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10133", "reference_id": "CVE-2019-10133", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10133" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/57250?format=api", "purl": "pkg:composer/moodle/moodle@3.1.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.1.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/57251?format=api", "purl": "pkg:composer/moodle/moodle@3.4.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.4.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/57252?format=api", "purl": "pkg:composer/moodle/moodle@3.5.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17vy-726y-u7fz" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-1wmh-jwh7-2fcw" }, { "vulnerability": "VCID-2et6-3ejg-27b8" }, { "vulnerability": "VCID-3r3j-bqzm-5ufz" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-68h6-fzmy-qqce" }, { "vulnerability": "VCID-6x4n-my8x-sbfg" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-8xgp-3nds-d7dm" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-a8sa-7ed7-wbby" }, { "vulnerability": "VCID-ajnx-w4at-7fgp" }, { "vulnerability": "VCID-c5dg-exke-hfg6" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-dhu5-3tda-2qfx" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-f1na-71hq-w7c3" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-gxc1-npsq-b7ed" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-j8n5-7feg-8bbp" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-ktfp-pk4e-2fa7" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-t5d1-h6c9-6kex" }, { "vulnerability": "VCID-urh4-9kzr-93c3" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-wk9h-bhj5-zua8" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y1m2-7ua9-47fm" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" }, { "vulnerability": "VCID-zn3y-sq7h-83h9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.5.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/57253?format=api", "purl": "pkg:composer/moodle/moodle@3.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1694-95s2-63a9" }, { "vulnerability": "VCID-19gu-j1d4-4uab" }, { "vulnerability": "VCID-4s7h-83dq-aua7" }, { "vulnerability": "VCID-73mw-h65y-fqg6" }, { "vulnerability": "VCID-a7n4-f1nk-vqec" }, { "vulnerability": "VCID-cf2z-a3h4-jkhf" }, { "vulnerability": "VCID-d2au-r7m3-cyc8" }, { "vulnerability": "VCID-e52k-bb2k-tbgh" }, { "vulnerability": "VCID-fj1x-be1c-h3c4" }, { "vulnerability": "VCID-fnen-jbsf-3kax" }, { "vulnerability": "VCID-fvkk-381y-1kcb" }, { "vulnerability": "VCID-fx3x-sc7h-guhb" }, { "vulnerability": "VCID-gx6x-ebpv-k7er" }, { "vulnerability": "VCID-hbss-w1t3-sya7" }, { "vulnerability": "VCID-k249-a5wk-2fcs" }, { "vulnerability": "VCID-kys8-9mu7-w7dn" }, { "vulnerability": "VCID-mkuq-tdbg-t3ce" }, { "vulnerability": "VCID-s8ph-ghzm-q7c5" }, { "vulnerability": "VCID-svds-tck8-rqce" }, { "vulnerability": "VCID-wc31-v1d5-jydh" }, { "vulnerability": "VCID-x3gw-ztjq-ebbu" }, { "vulnerability": "VCID-y219-hufv-tkds" }, { "vulnerability": "VCID-yyb2-961k-qyet" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.4" } ], "aliases": [ "CVE-2019-10133", "GHSA-5xp2-rv4h-mm2q" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x2e5-m5rs-7qfr" } ], "risk_score": "3.1", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@3.6.4" }