VulnerableCode Package Details - pkg:composer/moodle/moodle@3.6.4

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/moodle/moodle@3.6.4

Essentials
History (3)

purl	pkg:composer/moodle/moodle@3.6.4

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-deur-8zdf-2kh2	Improper Input Validation The size of users' private file uploads via email were not correctly checked, so their quota allowance could be exceeded.	CVE-2019-10134
VCID-m3np-aebb-8qaa	Improper Access Control A web service fetching messages was not restricted to the current user's conversations.	CVE-2019-10154
VCID-qxsq-ku22-r7gx	URL Redirection to Untrusted Site (Open Redirect) The form to upload cohorts contained a redirect field, which was not restricted to internal URLs.	CVE-2019-10133

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:39:23.830413+00:00	GitLab Importer	Fixing	VCID-deur-8zdf-2kh2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2019-10134.yml	38.6.0
2026-06-02T04:39:23.684616+00:00	GitLab Importer	Fixing	VCID-m3np-aebb-8qaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2019-10154.yml	38.6.0
2026-06-02T04:39:23.475419+00:00	GitLab Importer	Fixing	VCID-qxsq-ku22-r7gx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2019-10133.yml	38.6.0