Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/moodle/moodle@4.2.0
Typecomposer
Namespacemoodle
Namemoodle
Version4.2.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version4.5.9
Latest_non_vulnerable_version5.1.2
Affected_by_vulnerabilities
0
url VCID-24a4-k6sm-zfey
vulnerability_id VCID-24a4-k6sm-zfey
summary A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports, which could result in users without the "view hidden user fields" capability having access to the information.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79541
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79541
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43429
reference_id
reference_type
scores
0
value 0.00296
scoring_system epss
scoring_elements 0.53291
published_at 2026-06-11T12:55:00Z
1
value 0.00296
scoring_system epss
scoring_elements 0.53417
published_at 2026-06-12T12:55:00Z
2
value 0.00296
scoring_system epss
scoring_elements 0.53418
published_at 2026-06-14T12:55:00Z
3
value 0.00296
scoring_system epss
scoring_elements 0.53432
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43429
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43429
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43429
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461197
reference_id discuss.php?d=461197
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:15:16Z/
url https://moodle.org/mod/forum/discuss.php?d=461197
5
reference_url https://github.com/advisories/GHSA-c767-4whh-v7rw
reference_id GHSA-c767-4whh-v7rw
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-c767-4whh-v7rw
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304257
reference_id show_bug.cgi?id=2304257
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:15:16Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304257
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43429, GHSA-c767-4whh-v7rw
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-24a4-k6sm-zfey
1
url VCID-352q-17as-77gz
vulnerability_id VCID-352q-17as-77gz
summary Separate Groups mode restrictions were not honored when performing a forum export, which would export forum data for all groups. By default this only provided additional access to non-editing teachers.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-25981
reference_id
reference_type
scores
0
value 0.00271
scoring_system epss
scoring_elements 0.51002
published_at 2026-06-14T12:55:00Z
1
value 0.00271
scoring_system epss
scoring_elements 0.51014
published_at 2026-06-13T12:55:00Z
2
value 0.00271
scoring_system epss
scoring_elements 0.50999
published_at 2026-06-12T12:55:00Z
3
value 0.00271
scoring_system epss
scoring_elements 0.50866
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-25981
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/1c059cb3fe39da46959e912dc671844dd204e83b
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/1c059cb3fe39da46959e912dc671844dd204e83b
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-25981
reference_id CVE-2024-25981
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-25981
5
reference_url https://moodle.org/mod/forum/discuss.php?d=455637
reference_id discuss.php?d=455637
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/
url https://moodle.org/mod/forum/discuss.php?d=455637
6
reference_url https://github.com/advisories/GHSA-jfrg-9hpq-9hvp
reference_id GHSA-jfrg-9hpq-9hvp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jfrg-9hpq-9hvp
7
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80504
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80504
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80504
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
reference_id KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264097
reference_id show_bug.cgi?id=2264097
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2264097
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.6
purl pkg:composer/moodle/moodle@4.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5uk3-pd1j-ykgr
7
vulnerability VCID-5zy2-a2hw-tuba
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-b53y-qvcd-9bc2
12
vulnerability VCID-b9r4-vfvf-r3cx
13
vulnerability VCID-bhnn-ae5z-53cm
14
vulnerability VCID-bjdy-pxgn-hkcx
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-catf-58r7-87h5
17
vulnerability VCID-cnqj-gehg-xuhk
18
vulnerability VCID-e6pf-zcvz-mqfr
19
vulnerability VCID-ez7r-y64f-dbbx
20
vulnerability VCID-j9sx-pf51-buhe
21
vulnerability VCID-jejy-353t-x3de
22
vulnerability VCID-k5ku-5n57-w7e3
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-meau-pbrc-5ffv
25
vulnerability VCID-mm87-9trq-ykca
26
vulnerability VCID-ndgr-yj2x-tbcr
27
vulnerability VCID-nsvy-6gvu-wqe1
28
vulnerability VCID-nw5a-bxbt-vbg5
29
vulnerability VCID-pg53-92qn-67f4
30
vulnerability VCID-qm72-ebb5-67cr
31
vulnerability VCID-rdtm-s21h-87az
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-ud6t-af1d-2yfh
34
vulnerability VCID-vbmp-pabj-r3es
35
vulnerability VCID-vfa1-gfnu-gqgb
36
vulnerability VCID-vtfd-afct-zkc5
37
vulnerability VCID-w2zm-rxx4-xqcy
38
vulnerability VCID-w5kh-x8en-yke7
39
vulnerability VCID-wupv-hcad-4yfs
40
vulnerability VCID-xgmq-ybaw-ckae
41
vulnerability VCID-xju1-g3ft-gyge
42
vulnerability VCID-xzfd-upm6-6fa8
43
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6
1
url pkg:composer/moodle/moodle@4.3.3
purl pkg:composer/moodle/moodle@4.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-396x-a5g1-p3a1
5
vulnerability VCID-3dr4-hds3-ckbr
6
vulnerability VCID-3ee8-byud-7kab
7
vulnerability VCID-3v15-csmz-sfe9
8
vulnerability VCID-43r9-m1xz-5qge
9
vulnerability VCID-575h-xhz7-augs
10
vulnerability VCID-5uk3-pd1j-ykgr
11
vulnerability VCID-5zy2-a2hw-tuba
12
vulnerability VCID-67tn-z6kv-vybp
13
vulnerability VCID-7a6m-m4t2-5ydp
14
vulnerability VCID-7zqn-5pyf-pyg9
15
vulnerability VCID-82cj-8rk2-kygn
16
vulnerability VCID-87yg-v5af-mfd4
17
vulnerability VCID-8evy-5d1w-3fbm
18
vulnerability VCID-8w1a-ft6h-g7bt
19
vulnerability VCID-8ydw-ymjw-4qhd
20
vulnerability VCID-95fs-szzk-c3h5
21
vulnerability VCID-9fr5-4a3g-pbga
22
vulnerability VCID-b53y-qvcd-9bc2
23
vulnerability VCID-b9r4-vfvf-r3cx
24
vulnerability VCID-bhnn-ae5z-53cm
25
vulnerability VCID-bjdy-pxgn-hkcx
26
vulnerability VCID-bn3p-ccnj-3ubw
27
vulnerability VCID-c6hn-kyf7-g3e4
28
vulnerability VCID-c7uy-k6wn-s3f9
29
vulnerability VCID-catf-58r7-87h5
30
vulnerability VCID-cnqj-gehg-xuhk
31
vulnerability VCID-e6pf-zcvz-mqfr
32
vulnerability VCID-eaej-5e2e-yfcr
33
vulnerability VCID-ez7r-y64f-dbbx
34
vulnerability VCID-j897-5zfk-rbhk
35
vulnerability VCID-j9sx-pf51-buhe
36
vulnerability VCID-jejy-353t-x3de
37
vulnerability VCID-jn27-7e3d-1uc6
38
vulnerability VCID-k5ku-5n57-w7e3
39
vulnerability VCID-kymv-5vap-7qf7
40
vulnerability VCID-meau-pbrc-5ffv
41
vulnerability VCID-mm87-9trq-ykca
42
vulnerability VCID-n5hx-mc7q-sua6
43
vulnerability VCID-ndgr-yj2x-tbcr
44
vulnerability VCID-nsvy-6gvu-wqe1
45
vulnerability VCID-nw5a-bxbt-vbg5
46
vulnerability VCID-pg53-92qn-67f4
47
vulnerability VCID-pv24-2amy-4yb9
48
vulnerability VCID-qm72-ebb5-67cr
49
vulnerability VCID-rdtm-s21h-87az
50
vulnerability VCID-s97q-jcmh-ukdh
51
vulnerability VCID-sja2-g5vp-tqev
52
vulnerability VCID-tr6w-mqxr-vueh
53
vulnerability VCID-tvbe-wwjn-jkby
54
vulnerability VCID-uc4c-cw57-tyfp
55
vulnerability VCID-ud6t-af1d-2yfh
56
vulnerability VCID-vbmp-pabj-r3es
57
vulnerability VCID-vfa1-gfnu-gqgb
58
vulnerability VCID-vtfd-afct-zkc5
59
vulnerability VCID-w2zm-rxx4-xqcy
60
vulnerability VCID-w5kh-x8en-yke7
61
vulnerability VCID-w84c-jzp6-zkee
62
vulnerability VCID-wsj3-x2v5-y7gc
63
vulnerability VCID-wupv-hcad-4yfs
64
vulnerability VCID-x3bb-7vq7-aqaa
65
vulnerability VCID-xgmq-ybaw-ckae
66
vulnerability VCID-xju1-g3ft-gyge
67
vulnerability VCID-xkgj-r2v3-k3gt
68
vulnerability VCID-xzfd-upm6-6fa8
69
vulnerability VCID-zcea-b6q9-6fb9
70
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3
aliases CVE-2024-25981, GHSA-jfrg-9hpq-9hvp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-352q-17as-77gz
2
url VCID-35xa-1mjs-a3au
vulnerability_id VCID-35xa-1mjs-a3au
summary ID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5546
reference_id
reference_type
scores
0
value 0.02379
scoring_system epss
scoring_elements 0.85381
published_at 2026-06-14T12:55:00Z
1
value 0.02379
scoring_system epss
scoring_elements 0.85327
published_at 2026-06-11T12:55:00Z
2
value 0.02379
scoring_system epss
scoring_elements 0.85379
published_at 2026-06-12T12:55:00Z
3
value 0.02379
scoring_system epss
scoring_elements 0.85388
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5546
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/aa8ab48521fe4a57c3ec923e6e82a5ac1202e9de
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/aa8ab48521fe4a57c3ec923e6e82a5ac1202e9de
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5546
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5546
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451587
reference_id discuss.php?d=451587
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:14:29Z/
url https://moodle.org/mod/forum/discuss.php?d=451587
5
reference_url https://github.com/advisories/GHSA-9724-h8p7-r3jv
reference_id GHSA-9724-h8p7-r3jv
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9724-h8p7-r3jv
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78971
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78971
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:14:29Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78971
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243445
reference_id show_bug.cgi?id=2243445
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:14:29Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243445
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5546, GHSA-9724-h8p7-r3jv
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-35xa-1mjs-a3au
3
url VCID-364m-hhsz-dfcs
vulnerability_id VCID-364m-hhsz-dfcs
summary A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-45691
reference_id
reference_type
scores
0
value 0.00387
scoring_system epss
scoring_elements 0.60264
published_at 2026-06-11T12:55:00Z
1
value 0.00387
scoring_system epss
scoring_elements 0.60375
published_at 2026-06-14T12:55:00Z
2
value 0.00387
scoring_system epss
scoring_elements 0.60382
published_at 2026-06-13T12:55:00Z
3
value 0.00387
scoring_system epss
scoring_elements 0.60371
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-45691
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/3fc1073d304f660d2552b591c5fb92547ed01e92
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/3fc1073d304f660d2552b591c5fb92547ed01e92
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461897#p1854494
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=461897#p1854494
4
reference_url https://moodle.org/security
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/security
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-45691
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-45691
6
reference_url https://github.com/advisories/GHSA-xfv7-h2qg-rjm7
reference_id GHSA-xfv7-h2qg-rjm7
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xfv7-h2qg-rjm7
7
reference_url https://moodle.org/security/
reference_id security
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T19:17:16Z/
url https://moodle.org/security/
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2309940
reference_id show_bug.cgi?id=2309940
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T19:17:16Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2309940
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.10
purl pkg:composer/moodle/moodle@4.2.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-82cj-8rk2-kygn
2
vulnerability VCID-9fr5-4a3g-pbga
3
vulnerability VCID-j9sx-pf51-buhe
4
vulnerability VCID-kymv-5vap-7qf7
5
vulnerability VCID-nsvy-6gvu-wqe1
6
vulnerability VCID-pg53-92qn-67f4
7
vulnerability VCID-tr6w-mqxr-vueh
8
vulnerability VCID-xju1-g3ft-gyge
9
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.10
1
url pkg:composer/moodle/moodle@4.3.7
purl pkg:composer/moodle/moodle@4.3.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-67tn-z6kv-vybp
4
vulnerability VCID-7a6m-m4t2-5ydp
5
vulnerability VCID-7zqn-5pyf-pyg9
6
vulnerability VCID-82cj-8rk2-kygn
7
vulnerability VCID-87yg-v5af-mfd4
8
vulnerability VCID-8ydw-ymjw-4qhd
9
vulnerability VCID-95fs-szzk-c3h5
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-bn3p-ccnj-3ubw
12
vulnerability VCID-c7uy-k6wn-s3f9
13
vulnerability VCID-eaej-5e2e-yfcr
14
vulnerability VCID-j897-5zfk-rbhk
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-jn27-7e3d-1uc6
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-n5hx-mc7q-sua6
19
vulnerability VCID-nsvy-6gvu-wqe1
20
vulnerability VCID-pg53-92qn-67f4
21
vulnerability VCID-pv24-2amy-4yb9
22
vulnerability VCID-s97q-jcmh-ukdh
23
vulnerability VCID-sja2-g5vp-tqev
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-uc4c-cw57-tyfp
26
vulnerability VCID-w84c-jzp6-zkee
27
vulnerability VCID-wsj3-x2v5-y7gc
28
vulnerability VCID-x3bb-7vq7-aqaa
29
vulnerability VCID-xju1-g3ft-gyge
30
vulnerability VCID-xkgj-r2v3-k3gt
31
vulnerability VCID-zcea-b6q9-6fb9
32
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.7
2
url pkg:composer/moodle/moodle@4.4.3
purl pkg:composer/moodle/moodle@4.4.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-57uf-tz1x-akdt
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8ydw-ymjw-4qhd
10
vulnerability VCID-95fs-szzk-c3h5
11
vulnerability VCID-9fr5-4a3g-pbga
12
vulnerability VCID-bn3p-ccnj-3ubw
13
vulnerability VCID-c7uy-k6wn-s3f9
14
vulnerability VCID-cra3-6x3q-vkap
15
vulnerability VCID-eaej-5e2e-yfcr
16
vulnerability VCID-ebae-b6eb-s7fr
17
vulnerability VCID-fsuz-rgpw-8qd4
18
vulnerability VCID-gapa-a9xy-w3be
19
vulnerability VCID-hh6z-2319-83g4
20
vulnerability VCID-j897-5zfk-rbhk
21
vulnerability VCID-j9sx-pf51-buhe
22
vulnerability VCID-jn27-7e3d-1uc6
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-n5hx-mc7q-sua6
25
vulnerability VCID-nsvy-6gvu-wqe1
26
vulnerability VCID-nw7f-9kxh-dfer
27
vulnerability VCID-p6d8-jya8-vfe2
28
vulnerability VCID-pg53-92qn-67f4
29
vulnerability VCID-pv24-2amy-4yb9
30
vulnerability VCID-s97q-jcmh-ukdh
31
vulnerability VCID-sja2-g5vp-tqev
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-uc4c-cw57-tyfp
34
vulnerability VCID-w84c-jzp6-zkee
35
vulnerability VCID-wr3n-bk11-a3bj
36
vulnerability VCID-wsj3-x2v5-y7gc
37
vulnerability VCID-x3bb-7vq7-aqaa
38
vulnerability VCID-x9xg-ujre-3ub9
39
vulnerability VCID-xju1-g3ft-gyge
40
vulnerability VCID-xkgj-r2v3-k3gt
41
vulnerability VCID-zcea-b6q9-6fb9
42
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.3
aliases CVE-2024-45691, GHSA-xfv7-h2qg-rjm7
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-364m-hhsz-dfcs
4
url VCID-3dr4-hds3-ckbr
vulnerability_id VCID-3dr4-hds3-ckbr
summary A flaw was found in Moodle. An attacker with access to the restore interface could trigger server-side execution of arbitrary code. This is due to insufficient validation of restore input, which leads to unintended interpretation by core restore routines. Successful exploitation could result in a full compromise of the Moodle application.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-67847
reference_id
reference_type
scores
0
value 0.0003
scoring_system epss
scoring_elements 0.09012
published_at 2026-06-11T12:55:00Z
1
value 0.0003
scoring_system epss
scoring_elements 0.09051
published_at 2026-06-14T12:55:00Z
2
value 0.0003
scoring_system epss
scoring_elements 0.09063
published_at 2026-06-13T12:55:00Z
3
value 0.0003
scoring_system epss
scoring_elements 0.09061
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-67847
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://moodle.org/mod/forum/discuss.php?d=471297#p1892199
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=471297#p1892199
3
reference_url https://access.redhat.com/security/cve/CVE-2025-67847
reference_id CVE-2025-67847
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-24T04:55:19Z/
url https://access.redhat.com/security/cve/CVE-2025-67847
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-67847
reference_id CVE-2025-67847
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-67847
5
reference_url https://github.com/advisories/GHSA-xvmh-25jw-gmmm
reference_id GHSA-xvmh-25jw-gmmm
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xvmh-25jw-gmmm
fixed_packages
0
url pkg:composer/moodle/moodle@4.4.12
purl pkg:composer/moodle/moodle@4.4.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-82cj-8rk2-kygn
1
vulnerability VCID-nsvy-6gvu-wqe1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.12
1
url pkg:composer/moodle/moodle@4.5.8
purl pkg:composer/moodle/moodle@4.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-82cj-8rk2-kygn
1
vulnerability VCID-nsvy-6gvu-wqe1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.8
2
url pkg:composer/moodle/moodle@5.0.4
purl pkg:composer/moodle/moodle@5.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-82cj-8rk2-kygn
1
vulnerability VCID-nsvy-6gvu-wqe1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.4
3
url pkg:composer/moodle/moodle@5.1.1
purl pkg:composer/moodle/moodle@5.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-82cj-8rk2-kygn
1
vulnerability VCID-nsvy-6gvu-wqe1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.1
aliases CVE-2025-67847, GHSA-xvmh-25jw-gmmm
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3dr4-hds3-ckbr
5
url VCID-3ee8-byud-7kab
vulnerability_id VCID-3ee8-byud-7kab
summary A unique key should be generated for a user's QR login key and their auto-login key, so the same key cannot be used interchangeably between the two.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-38277
reference_id
reference_type
scores
0
value 0.00186
scoring_system epss
scoring_elements 0.40429
published_at 2026-06-14T12:55:00Z
1
value 0.00186
scoring_system epss
scoring_elements 0.4044
published_at 2026-06-13T12:55:00Z
2
value 0.00186
scoring_system epss
scoring_elements 0.40418
published_at 2026-06-12T12:55:00Z
3
value 0.00186
scoring_system epss
scoring_elements 0.4025
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-38277
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/0caedaab7cd5a46331d56654ce9301b0a5a04c56
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/0caedaab7cd5a46331d56654ce9301b0a5a04c56
3
reference_url https://github.com/moodle/moodle/commit/1aea4a15281d81f2414a95aa485b8a6551708f57
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/1aea4a15281d81f2414a95aa485b8a6551708f57
4
reference_url https://github.com/moodle/moodle/commit/ad46a97f5355f0451d52e9f1a0f528d9a6f12e06
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/ad46a97f5355f0451d52e9f1a0f528d9a6f12e06
5
reference_url https://github.com/moodle/moodle/commit/d05795db8eece2943241a29a5443fb4685ba6070
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/d05795db8eece2943241a29a5443fb4685ba6070
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-38277
reference_id CVE-2024-38277
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-38277
9
reference_url https://moodle.org/mod/forum/discuss.php?d=459502
reference_id discuss.php?d=459502
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T15:55:16Z/
url https://moodle.org/mod/forum/discuss.php?d=459502
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
reference_id F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T15:55:16Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
11
reference_url https://github.com/advisories/GHSA-r82w-3phg-qvr4
reference_id GHSA-r82w-3phg-qvr4
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r82w-3phg-qvr4
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
reference_id GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T15:55:16Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.8
purl pkg:composer/moodle/moodle@4.2.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-575h-xhz7-augs
4
vulnerability VCID-82cj-8rk2-kygn
5
vulnerability VCID-8w1a-ft6h-g7bt
6
vulnerability VCID-9fr5-4a3g-pbga
7
vulnerability VCID-bjdy-pxgn-hkcx
8
vulnerability VCID-c6hn-kyf7-g3e4
9
vulnerability VCID-catf-58r7-87h5
10
vulnerability VCID-e6pf-zcvz-mqfr
11
vulnerability VCID-j9sx-pf51-buhe
12
vulnerability VCID-k5ku-5n57-w7e3
13
vulnerability VCID-kymv-5vap-7qf7
14
vulnerability VCID-meau-pbrc-5ffv
15
vulnerability VCID-ndgr-yj2x-tbcr
16
vulnerability VCID-nsvy-6gvu-wqe1
17
vulnerability VCID-pg53-92qn-67f4
18
vulnerability VCID-rdtm-s21h-87az
19
vulnerability VCID-tr6w-mqxr-vueh
20
vulnerability VCID-ud6t-af1d-2yfh
21
vulnerability VCID-vbmp-pabj-r3es
22
vulnerability VCID-vfa1-gfnu-gqgb
23
vulnerability VCID-w2zm-rxx4-xqcy
24
vulnerability VCID-xgmq-ybaw-ckae
25
vulnerability VCID-xju1-g3ft-gyge
26
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8
1
url pkg:composer/moodle/moodle@4.3.5
purl pkg:composer/moodle/moodle@4.3.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-9fr5-4a3g-pbga
16
vulnerability VCID-bjdy-pxgn-hkcx
17
vulnerability VCID-bn3p-ccnj-3ubw
18
vulnerability VCID-c6hn-kyf7-g3e4
19
vulnerability VCID-c7uy-k6wn-s3f9
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-e6pf-zcvz-mqfr
22
vulnerability VCID-eaej-5e2e-yfcr
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-k5ku-5n57-w7e3
27
vulnerability VCID-kymv-5vap-7qf7
28
vulnerability VCID-meau-pbrc-5ffv
29
vulnerability VCID-n5hx-mc7q-sua6
30
vulnerability VCID-ndgr-yj2x-tbcr
31
vulnerability VCID-nsvy-6gvu-wqe1
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-ud6t-af1d-2yfh
40
vulnerability VCID-vbmp-pabj-r3es
41
vulnerability VCID-vfa1-gfnu-gqgb
42
vulnerability VCID-w2zm-rxx4-xqcy
43
vulnerability VCID-w84c-jzp6-zkee
44
vulnerability VCID-wsj3-x2v5-y7gc
45
vulnerability VCID-x3bb-7vq7-aqaa
46
vulnerability VCID-xgmq-ybaw-ckae
47
vulnerability VCID-xju1-g3ft-gyge
48
vulnerability VCID-xkgj-r2v3-k3gt
49
vulnerability VCID-zcea-b6q9-6fb9
50
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5
2
url pkg:composer/moodle/moodle@4.4.1
purl pkg:composer/moodle/moodle@4.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-2ua4-y1mx-t7f4
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3s11-9e4p-pygy
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-57uf-tz1x-akdt
8
vulnerability VCID-67tn-z6kv-vybp
9
vulnerability VCID-7a6m-m4t2-5ydp
10
vulnerability VCID-7zqn-5pyf-pyg9
11
vulnerability VCID-82cj-8rk2-kygn
12
vulnerability VCID-87yg-v5af-mfd4
13
vulnerability VCID-8w1a-ft6h-g7bt
14
vulnerability VCID-8ydw-ymjw-4qhd
15
vulnerability VCID-95fs-szzk-c3h5
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-bjdy-pxgn-hkcx
18
vulnerability VCID-bn3p-ccnj-3ubw
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-c7uy-k6wn-s3f9
21
vulnerability VCID-catf-58r7-87h5
22
vulnerability VCID-cra3-6x3q-vkap
23
vulnerability VCID-e6pf-zcvz-mqfr
24
vulnerability VCID-eaej-5e2e-yfcr
25
vulnerability VCID-ebae-b6eb-s7fr
26
vulnerability VCID-fsuz-rgpw-8qd4
27
vulnerability VCID-gapa-a9xy-w3be
28
vulnerability VCID-hh6z-2319-83g4
29
vulnerability VCID-j897-5zfk-rbhk
30
vulnerability VCID-j9sx-pf51-buhe
31
vulnerability VCID-jn27-7e3d-1uc6
32
vulnerability VCID-k5ku-5n57-w7e3
33
vulnerability VCID-kymv-5vap-7qf7
34
vulnerability VCID-meau-pbrc-5ffv
35
vulnerability VCID-n5hx-mc7q-sua6
36
vulnerability VCID-ndgr-yj2x-tbcr
37
vulnerability VCID-ndsq-chgj-4kcq
38
vulnerability VCID-nsvy-6gvu-wqe1
39
vulnerability VCID-nw7f-9kxh-dfer
40
vulnerability VCID-p6d8-jya8-vfe2
41
vulnerability VCID-pg53-92qn-67f4
42
vulnerability VCID-pv24-2amy-4yb9
43
vulnerability VCID-q51n-px1r-tkh4
44
vulnerability VCID-rdtm-s21h-87az
45
vulnerability VCID-s97q-jcmh-ukdh
46
vulnerability VCID-sja2-g5vp-tqev
47
vulnerability VCID-tr6w-mqxr-vueh
48
vulnerability VCID-uc4c-cw57-tyfp
49
vulnerability VCID-ud6t-af1d-2yfh
50
vulnerability VCID-vbmp-pabj-r3es
51
vulnerability VCID-vfa1-gfnu-gqgb
52
vulnerability VCID-w2zm-rxx4-xqcy
53
vulnerability VCID-w84c-jzp6-zkee
54
vulnerability VCID-wr3n-bk11-a3bj
55
vulnerability VCID-wsj3-x2v5-y7gc
56
vulnerability VCID-x3bb-7vq7-aqaa
57
vulnerability VCID-x9xg-ujre-3ub9
58
vulnerability VCID-xgmq-ybaw-ckae
59
vulnerability VCID-xju1-g3ft-gyge
60
vulnerability VCID-xkgj-r2v3-k3gt
61
vulnerability VCID-zcea-b6q9-6fb9
62
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1
aliases CVE-2024-38277, GHSA-r82w-3phg-qvr4
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3ee8-byud-7kab
6
url VCID-3v15-csmz-sfe9
vulnerability_id VCID-3v15-csmz-sfe9
summary Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion prompt.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-38274
reference_id
reference_type
scores
0
value 0.00994
scoring_system epss
scoring_elements 0.77446
published_at 2026-06-13T12:55:00Z
1
value 0.00994
scoring_system epss
scoring_elements 0.77437
published_at 2026-06-14T12:55:00Z
2
value 0.00994
scoring_system epss
scoring_elements 0.77361
published_at 2026-06-11T12:55:00Z
3
value 0.00994
scoring_system epss
scoring_elements 0.77431
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-38274
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-38274
reference_id CVE-2024-38274
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-38274
5
reference_url https://moodle.org/mod/forum/discuss.php?d=459499
reference_id discuss.php?d=459499
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-15T18:37:02Z/
url https://moodle.org/mod/forum/discuss.php?d=459499
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
reference_id F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-15T18:37:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
7
reference_url https://github.com/advisories/GHSA-p5cg-6rfr-6mx8
reference_id GHSA-p5cg-6rfr-6mx8
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p5cg-6rfr-6mx8
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
reference_id GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-15T18:37:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.8
purl pkg:composer/moodle/moodle@4.2.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-575h-xhz7-augs
4
vulnerability VCID-82cj-8rk2-kygn
5
vulnerability VCID-8w1a-ft6h-g7bt
6
vulnerability VCID-9fr5-4a3g-pbga
7
vulnerability VCID-bjdy-pxgn-hkcx
8
vulnerability VCID-c6hn-kyf7-g3e4
9
vulnerability VCID-catf-58r7-87h5
10
vulnerability VCID-e6pf-zcvz-mqfr
11
vulnerability VCID-j9sx-pf51-buhe
12
vulnerability VCID-k5ku-5n57-w7e3
13
vulnerability VCID-kymv-5vap-7qf7
14
vulnerability VCID-meau-pbrc-5ffv
15
vulnerability VCID-ndgr-yj2x-tbcr
16
vulnerability VCID-nsvy-6gvu-wqe1
17
vulnerability VCID-pg53-92qn-67f4
18
vulnerability VCID-rdtm-s21h-87az
19
vulnerability VCID-tr6w-mqxr-vueh
20
vulnerability VCID-ud6t-af1d-2yfh
21
vulnerability VCID-vbmp-pabj-r3es
22
vulnerability VCID-vfa1-gfnu-gqgb
23
vulnerability VCID-w2zm-rxx4-xqcy
24
vulnerability VCID-xgmq-ybaw-ckae
25
vulnerability VCID-xju1-g3ft-gyge
26
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8
1
url pkg:composer/moodle/moodle@4.3.5
purl pkg:composer/moodle/moodle@4.3.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-9fr5-4a3g-pbga
16
vulnerability VCID-bjdy-pxgn-hkcx
17
vulnerability VCID-bn3p-ccnj-3ubw
18
vulnerability VCID-c6hn-kyf7-g3e4
19
vulnerability VCID-c7uy-k6wn-s3f9
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-e6pf-zcvz-mqfr
22
vulnerability VCID-eaej-5e2e-yfcr
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-k5ku-5n57-w7e3
27
vulnerability VCID-kymv-5vap-7qf7
28
vulnerability VCID-meau-pbrc-5ffv
29
vulnerability VCID-n5hx-mc7q-sua6
30
vulnerability VCID-ndgr-yj2x-tbcr
31
vulnerability VCID-nsvy-6gvu-wqe1
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-ud6t-af1d-2yfh
40
vulnerability VCID-vbmp-pabj-r3es
41
vulnerability VCID-vfa1-gfnu-gqgb
42
vulnerability VCID-w2zm-rxx4-xqcy
43
vulnerability VCID-w84c-jzp6-zkee
44
vulnerability VCID-wsj3-x2v5-y7gc
45
vulnerability VCID-x3bb-7vq7-aqaa
46
vulnerability VCID-xgmq-ybaw-ckae
47
vulnerability VCID-xju1-g3ft-gyge
48
vulnerability VCID-xkgj-r2v3-k3gt
49
vulnerability VCID-zcea-b6q9-6fb9
50
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5
2
url pkg:composer/moodle/moodle@4.4.1
purl pkg:composer/moodle/moodle@4.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-2ua4-y1mx-t7f4
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3s11-9e4p-pygy
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-57uf-tz1x-akdt
8
vulnerability VCID-67tn-z6kv-vybp
9
vulnerability VCID-7a6m-m4t2-5ydp
10
vulnerability VCID-7zqn-5pyf-pyg9
11
vulnerability VCID-82cj-8rk2-kygn
12
vulnerability VCID-87yg-v5af-mfd4
13
vulnerability VCID-8w1a-ft6h-g7bt
14
vulnerability VCID-8ydw-ymjw-4qhd
15
vulnerability VCID-95fs-szzk-c3h5
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-bjdy-pxgn-hkcx
18
vulnerability VCID-bn3p-ccnj-3ubw
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-c7uy-k6wn-s3f9
21
vulnerability VCID-catf-58r7-87h5
22
vulnerability VCID-cra3-6x3q-vkap
23
vulnerability VCID-e6pf-zcvz-mqfr
24
vulnerability VCID-eaej-5e2e-yfcr
25
vulnerability VCID-ebae-b6eb-s7fr
26
vulnerability VCID-fsuz-rgpw-8qd4
27
vulnerability VCID-gapa-a9xy-w3be
28
vulnerability VCID-hh6z-2319-83g4
29
vulnerability VCID-j897-5zfk-rbhk
30
vulnerability VCID-j9sx-pf51-buhe
31
vulnerability VCID-jn27-7e3d-1uc6
32
vulnerability VCID-k5ku-5n57-w7e3
33
vulnerability VCID-kymv-5vap-7qf7
34
vulnerability VCID-meau-pbrc-5ffv
35
vulnerability VCID-n5hx-mc7q-sua6
36
vulnerability VCID-ndgr-yj2x-tbcr
37
vulnerability VCID-ndsq-chgj-4kcq
38
vulnerability VCID-nsvy-6gvu-wqe1
39
vulnerability VCID-nw7f-9kxh-dfer
40
vulnerability VCID-p6d8-jya8-vfe2
41
vulnerability VCID-pg53-92qn-67f4
42
vulnerability VCID-pv24-2amy-4yb9
43
vulnerability VCID-q51n-px1r-tkh4
44
vulnerability VCID-rdtm-s21h-87az
45
vulnerability VCID-s97q-jcmh-ukdh
46
vulnerability VCID-sja2-g5vp-tqev
47
vulnerability VCID-tr6w-mqxr-vueh
48
vulnerability VCID-uc4c-cw57-tyfp
49
vulnerability VCID-ud6t-af1d-2yfh
50
vulnerability VCID-vbmp-pabj-r3es
51
vulnerability VCID-vfa1-gfnu-gqgb
52
vulnerability VCID-w2zm-rxx4-xqcy
53
vulnerability VCID-w84c-jzp6-zkee
54
vulnerability VCID-wr3n-bk11-a3bj
55
vulnerability VCID-wsj3-x2v5-y7gc
56
vulnerability VCID-x3bb-7vq7-aqaa
57
vulnerability VCID-x9xg-ujre-3ub9
58
vulnerability VCID-xgmq-ybaw-ckae
59
vulnerability VCID-xju1-g3ft-gyge
60
vulnerability VCID-xkgj-r2v3-k3gt
61
vulnerability VCID-zcea-b6q9-6fb9
62
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1
aliases CVE-2024-38274, GHSA-p5cg-6rfr-6mx8
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3v15-csmz-sfe9
7
url VCID-575h-xhz7-augs
vulnerability_id VCID-575h-xhz7-augs
summary A flaw was found in moodle. Insufficient sanitizing of data when performing a restore could result in a cross-site scripting (XSS) risk from malicious backup files.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81394
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81394
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43437
reference_id
reference_type
scores
0
value 0.01529
scoring_system epss
scoring_elements 0.8171
published_at 2026-06-11T12:55:00Z
1
value 0.01529
scoring_system epss
scoring_elements 0.81771
published_at 2026-06-12T12:55:00Z
2
value 0.01529
scoring_system epss
scoring_elements 0.81772
published_at 2026-06-14T12:55:00Z
3
value 0.01529
scoring_system epss
scoring_elements 0.8178
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43437
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43437
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43437
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461207
reference_id discuss.php?d=461207
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-11T14:28:15Z/
url https://moodle.org/mod/forum/discuss.php?d=461207
5
reference_url https://github.com/advisories/GHSA-4hjf-6pxr-549h
reference_id GHSA-4hjf-6pxr-549h
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4hjf-6pxr-549h
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304266
reference_id show_bug.cgi?id=2304266
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 1.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-11T14:28:15Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304266
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43437, GHSA-4hjf-6pxr-549h
risk_score 2.5
exploitability 0.5
weighted_severity 4.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-575h-xhz7-augs
8
url VCID-59gr-d6p5-u7fv
vulnerability_id VCID-59gr-d6p5-u7fv
summary The course upload preview contained an XSS risk for users uploading unsafe data.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5547
reference_id
reference_type
scores
0
value 0.00139
scoring_system epss
scoring_elements 0.33964
published_at 2026-06-14T12:55:00Z
1
value 0.00139
scoring_system epss
scoring_elements 0.33784
published_at 2026-06-11T12:55:00Z
2
value 0.00139
scoring_system epss
scoring_elements 0.33963
published_at 2026-06-12T12:55:00Z
3
value 0.00139
scoring_system epss
scoring_elements 0.33986
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5547
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/833e818f022cce8373922afaa0cc6c8726b6b079
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/833e818f022cce8373922afaa0cc6c8726b6b079
3
reference_url https://github.com/moodle/moodle/commit/ef67f43c67e00c271658e42fc2e9cbe5fc94a87e
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/ef67f43c67e00c271658e42fc2e9cbe5fc94a87e
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5547
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5547
5
reference_url https://moodle.org/mod/forum/discuss.php?d=451588
reference_id discuss.php?d=451588
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:25:11Z/
url https://moodle.org/mod/forum/discuss.php?d=451588
6
reference_url https://github.com/advisories/GHSA-9gqp-3g28-w9xc
reference_id GHSA-9gqp-3g28-w9xc
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9gqp-3g28-w9xc
7
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79455
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79455
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:25:11Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79455
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243447
reference_id show_bug.cgi?id=2243447
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:25:11Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243447
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5547, GHSA-9gqp-3g28-w9xc
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-59gr-d6p5-u7fv
9
url VCID-5uk3-pd1j-ykgr
vulnerability_id VCID-5uk3-pd1j-ykgr
summary Additional sanitizing was required when opening the equation editor to prevent a stored XSS risk when editing another user's equation.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81352
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81352
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-33997
reference_id
reference_type
scores
0
value 0.00997
scoring_system epss
scoring_elements 0.77457
published_at 2026-06-12T12:55:00Z
1
value 0.00997
scoring_system epss
scoring_elements 0.77387
published_at 2026-06-11T12:55:00Z
2
value 0.00997
scoring_system epss
scoring_elements 0.77463
published_at 2026-06-14T12:55:00Z
3
value 0.00997
scoring_system epss
scoring_elements 0.77472
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-33997
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/25b1b643c873f6d83ae61903012896b2811fa3bb
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/25b1b643c873f6d83ae61903012896b2811fa3bb
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-33997
reference_id CVE-2024-33997
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-33997
5
reference_url https://moodle.org/mod/forum/discuss.php?d=458385
reference_id discuss.php?d=458385
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T16:36:59Z/
url https://moodle.org/mod/forum/discuss.php?d=458385
6
reference_url https://github.com/advisories/GHSA-9qgq-93c7-9hm4
reference_id GHSA-9qgq-93c7-9hm4
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9qgq-93c7-9hm4
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-33997, GHSA-9qgq-93c7-9hm4
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5uk3-pd1j-ykgr
10
url VCID-5zy2-a2hw-tuba
vulnerability_id VCID-5zy2-a2hw-tuba
summary Insufficient capability checks meant it was possible for users to gain access to BigBlueButton join URLs they did not have permission to access.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-38273
reference_id
reference_type
scores
0
value 0.00199
scoring_system epss
scoring_elements 0.42167
published_at 2026-06-14T12:55:00Z
1
value 0.00199
scoring_system epss
scoring_elements 0.42178
published_at 2026-06-13T12:55:00Z
2
value 0.00199
scoring_system epss
scoring_elements 0.42156
published_at 2026-06-12T12:55:00Z
3
value 0.00199
scoring_system epss
scoring_elements 0.41992
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-38273
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/500cec575731fd8575569dcb5811535751dddae1
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/500cec575731fd8575569dcb5811535751dddae1
3
reference_url https://github.com/moodle/moodle/commit/647b9dc06409211018c9f28581504d096ce9e3a8
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/647b9dc06409211018c9f28581504d096ce9e3a8
4
reference_url https://github.com/moodle/moodle/commit/6c0645ca29b195b5caaffc27d80f2ff715c33a48
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/6c0645ca29b195b5caaffc27d80f2ff715c33a48
5
reference_url https://github.com/moodle/moodle/commit/a10506b8d70609478fef156d489e0c7d727b6098
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/a10506b8d70609478fef156d489e0c7d727b6098
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-38273
reference_id CVE-2024-38273
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-38273
9
reference_url https://moodle.org/mod/forum/discuss.php?d=459498
reference_id discuss.php?d=459498
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
2
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-20T18:54:37Z/
url https://moodle.org/mod/forum/discuss.php?d=459498
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
reference_id F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-20T18:54:37Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
11
reference_url https://github.com/advisories/GHSA-x29x-qwvx-fxr2
reference_id GHSA-x29x-qwvx-fxr2
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-x29x-qwvx-fxr2
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
reference_id GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-20T18:54:37Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.8
purl pkg:composer/moodle/moodle@4.2.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-575h-xhz7-augs
4
vulnerability VCID-82cj-8rk2-kygn
5
vulnerability VCID-8w1a-ft6h-g7bt
6
vulnerability VCID-9fr5-4a3g-pbga
7
vulnerability VCID-bjdy-pxgn-hkcx
8
vulnerability VCID-c6hn-kyf7-g3e4
9
vulnerability VCID-catf-58r7-87h5
10
vulnerability VCID-e6pf-zcvz-mqfr
11
vulnerability VCID-j9sx-pf51-buhe
12
vulnerability VCID-k5ku-5n57-w7e3
13
vulnerability VCID-kymv-5vap-7qf7
14
vulnerability VCID-meau-pbrc-5ffv
15
vulnerability VCID-ndgr-yj2x-tbcr
16
vulnerability VCID-nsvy-6gvu-wqe1
17
vulnerability VCID-pg53-92qn-67f4
18
vulnerability VCID-rdtm-s21h-87az
19
vulnerability VCID-tr6w-mqxr-vueh
20
vulnerability VCID-ud6t-af1d-2yfh
21
vulnerability VCID-vbmp-pabj-r3es
22
vulnerability VCID-vfa1-gfnu-gqgb
23
vulnerability VCID-w2zm-rxx4-xqcy
24
vulnerability VCID-xgmq-ybaw-ckae
25
vulnerability VCID-xju1-g3ft-gyge
26
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8
1
url pkg:composer/moodle/moodle@4.3.5
purl pkg:composer/moodle/moodle@4.3.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-9fr5-4a3g-pbga
16
vulnerability VCID-bjdy-pxgn-hkcx
17
vulnerability VCID-bn3p-ccnj-3ubw
18
vulnerability VCID-c6hn-kyf7-g3e4
19
vulnerability VCID-c7uy-k6wn-s3f9
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-e6pf-zcvz-mqfr
22
vulnerability VCID-eaej-5e2e-yfcr
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-k5ku-5n57-w7e3
27
vulnerability VCID-kymv-5vap-7qf7
28
vulnerability VCID-meau-pbrc-5ffv
29
vulnerability VCID-n5hx-mc7q-sua6
30
vulnerability VCID-ndgr-yj2x-tbcr
31
vulnerability VCID-nsvy-6gvu-wqe1
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-ud6t-af1d-2yfh
40
vulnerability VCID-vbmp-pabj-r3es
41
vulnerability VCID-vfa1-gfnu-gqgb
42
vulnerability VCID-w2zm-rxx4-xqcy
43
vulnerability VCID-w84c-jzp6-zkee
44
vulnerability VCID-wsj3-x2v5-y7gc
45
vulnerability VCID-x3bb-7vq7-aqaa
46
vulnerability VCID-xgmq-ybaw-ckae
47
vulnerability VCID-xju1-g3ft-gyge
48
vulnerability VCID-xkgj-r2v3-k3gt
49
vulnerability VCID-zcea-b6q9-6fb9
50
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5
2
url pkg:composer/moodle/moodle@4.4.1
purl pkg:composer/moodle/moodle@4.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-2ua4-y1mx-t7f4
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3s11-9e4p-pygy
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-57uf-tz1x-akdt
8
vulnerability VCID-67tn-z6kv-vybp
9
vulnerability VCID-7a6m-m4t2-5ydp
10
vulnerability VCID-7zqn-5pyf-pyg9
11
vulnerability VCID-82cj-8rk2-kygn
12
vulnerability VCID-87yg-v5af-mfd4
13
vulnerability VCID-8w1a-ft6h-g7bt
14
vulnerability VCID-8ydw-ymjw-4qhd
15
vulnerability VCID-95fs-szzk-c3h5
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-bjdy-pxgn-hkcx
18
vulnerability VCID-bn3p-ccnj-3ubw
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-c7uy-k6wn-s3f9
21
vulnerability VCID-catf-58r7-87h5
22
vulnerability VCID-cra3-6x3q-vkap
23
vulnerability VCID-e6pf-zcvz-mqfr
24
vulnerability VCID-eaej-5e2e-yfcr
25
vulnerability VCID-ebae-b6eb-s7fr
26
vulnerability VCID-fsuz-rgpw-8qd4
27
vulnerability VCID-gapa-a9xy-w3be
28
vulnerability VCID-hh6z-2319-83g4
29
vulnerability VCID-j897-5zfk-rbhk
30
vulnerability VCID-j9sx-pf51-buhe
31
vulnerability VCID-jn27-7e3d-1uc6
32
vulnerability VCID-k5ku-5n57-w7e3
33
vulnerability VCID-kymv-5vap-7qf7
34
vulnerability VCID-meau-pbrc-5ffv
35
vulnerability VCID-n5hx-mc7q-sua6
36
vulnerability VCID-ndgr-yj2x-tbcr
37
vulnerability VCID-ndsq-chgj-4kcq
38
vulnerability VCID-nsvy-6gvu-wqe1
39
vulnerability VCID-nw7f-9kxh-dfer
40
vulnerability VCID-p6d8-jya8-vfe2
41
vulnerability VCID-pg53-92qn-67f4
42
vulnerability VCID-pv24-2amy-4yb9
43
vulnerability VCID-q51n-px1r-tkh4
44
vulnerability VCID-rdtm-s21h-87az
45
vulnerability VCID-s97q-jcmh-ukdh
46
vulnerability VCID-sja2-g5vp-tqev
47
vulnerability VCID-tr6w-mqxr-vueh
48
vulnerability VCID-uc4c-cw57-tyfp
49
vulnerability VCID-ud6t-af1d-2yfh
50
vulnerability VCID-vbmp-pabj-r3es
51
vulnerability VCID-vfa1-gfnu-gqgb
52
vulnerability VCID-w2zm-rxx4-xqcy
53
vulnerability VCID-w84c-jzp6-zkee
54
vulnerability VCID-wr3n-bk11-a3bj
55
vulnerability VCID-wsj3-x2v5-y7gc
56
vulnerability VCID-x3bb-7vq7-aqaa
57
vulnerability VCID-x9xg-ujre-3ub9
58
vulnerability VCID-xgmq-ybaw-ckae
59
vulnerability VCID-xju1-g3ft-gyge
60
vulnerability VCID-xkgj-r2v3-k3gt
61
vulnerability VCID-zcea-b6q9-6fb9
62
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1
aliases CVE-2024-38273, GHSA-x29x-qwvx-fxr2
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5zy2-a2hw-tuba
11
url VCID-67af-4zk5-sfb2
vulnerability_id VCID-67af-4zk5-sfb2
summary A remote code execution risk was identified in the IMSCP activity. By default this was only available to teachers and managers.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5540
reference_id
reference_type
scores
0
value 0.022
scoring_system epss
scoring_elements 0.84838
published_at 2026-06-14T12:55:00Z
1
value 0.022
scoring_system epss
scoring_elements 0.84785
published_at 2026-06-11T12:55:00Z
2
value 0.022
scoring_system epss
scoring_elements 0.84837
published_at 2026-06-12T12:55:00Z
3
value 0.022
scoring_system epss
scoring_elements 0.84846
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5540
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/3400ae6510b11202aa9d86f7e75b3dff10d81522
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/3400ae6510b11202aa9d86f7e75b3dff10d81522
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5540
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5540
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451581
reference_id discuss.php?d=451581
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-22T20:12:01Z/
url https://moodle.org/mod/forum/discuss.php?d=451581
5
reference_url https://github.com/advisories/GHSA-w8x2-w4qr-v3x4
reference_id GHSA-w8x2-w4qr-v3x4
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-w8x2-w4qr-v3x4
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79409
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79409
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-22T20:12:01Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79409
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243432
reference_id show_bug.cgi?id=2243432
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-22T20:12:01Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243432
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5540, GHSA-w8x2-w4qr-v3x4
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-67af-4zk5-sfb2
12
url VCID-6h6h-ny96-x7hu
vulnerability_id VCID-6h6h-ny96-x7hu
summary When duplicating a BigBlueButton activity, the original meeting ID was also duplicated instead of using a new ID for the new activity. This could provide unintended access to the original meeting.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5543
reference_id
reference_type
scores
0
value 0.00088
scoring_system epss
scoring_elements 0.25316
published_at 2026-06-14T12:55:00Z
1
value 0.00088
scoring_system epss
scoring_elements 0.25112
published_at 2026-06-11T12:55:00Z
2
value 0.00088
scoring_system epss
scoring_elements 0.25311
published_at 2026-06-12T12:55:00Z
3
value 0.00088
scoring_system epss
scoring_elements 0.25328
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5543
1
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5543
reference_id CVE-2023-5543
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-5543
2
reference_url https://moodle.org/mod/forum/discuss.php?d=451584
reference_id discuss.php?d=451584
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T21:03:37Z/
url https://moodle.org/mod/forum/discuss.php?d=451584
3
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77795
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77795
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T21:03:37Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77795
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243442
reference_id show_bug.cgi?id=2243442
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T21:03:37Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243442
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
aliases CVE-2023-5543
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6h6h-ny96-x7hu
13
url VCID-7z7h-w68u-1bc7
vulnerability_id VCID-7z7h-w68u-1bc7
summary Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-25980
reference_id
reference_type
scores
0
value 0.00167
scoring_system epss
scoring_elements 0.37771
published_at 2026-06-14T12:55:00Z
1
value 0.00167
scoring_system epss
scoring_elements 0.37582
published_at 2026-06-11T12:55:00Z
2
value 0.00167
scoring_system epss
scoring_elements 0.37759
published_at 2026-06-12T12:55:00Z
3
value 0.00167
scoring_system epss
scoring_elements 0.37784
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-25980
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/662192fcecdefdaae79f55db96bd64dbcdeef85b
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/662192fcecdefdaae79f55db96bd64dbcdeef85b
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-25980
reference_id CVE-2024-25980
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-25980
5
reference_url https://moodle.org/mod/forum/discuss.php?d=455636
reference_id discuss.php?d=455636
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/
url https://moodle.org/mod/forum/discuss.php?d=455636
6
reference_url https://github.com/advisories/GHSA-cp8m-h777-g4p3
reference_id GHSA-cp8m-h777-g4p3
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cp8m-h777-g4p3
7
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80501
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80501
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80501
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
reference_id KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264096
reference_id show_bug.cgi?id=2264096
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2264096
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.6
purl pkg:composer/moodle/moodle@4.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5uk3-pd1j-ykgr
7
vulnerability VCID-5zy2-a2hw-tuba
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-b53y-qvcd-9bc2
12
vulnerability VCID-b9r4-vfvf-r3cx
13
vulnerability VCID-bhnn-ae5z-53cm
14
vulnerability VCID-bjdy-pxgn-hkcx
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-catf-58r7-87h5
17
vulnerability VCID-cnqj-gehg-xuhk
18
vulnerability VCID-e6pf-zcvz-mqfr
19
vulnerability VCID-ez7r-y64f-dbbx
20
vulnerability VCID-j9sx-pf51-buhe
21
vulnerability VCID-jejy-353t-x3de
22
vulnerability VCID-k5ku-5n57-w7e3
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-meau-pbrc-5ffv
25
vulnerability VCID-mm87-9trq-ykca
26
vulnerability VCID-ndgr-yj2x-tbcr
27
vulnerability VCID-nsvy-6gvu-wqe1
28
vulnerability VCID-nw5a-bxbt-vbg5
29
vulnerability VCID-pg53-92qn-67f4
30
vulnerability VCID-qm72-ebb5-67cr
31
vulnerability VCID-rdtm-s21h-87az
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-ud6t-af1d-2yfh
34
vulnerability VCID-vbmp-pabj-r3es
35
vulnerability VCID-vfa1-gfnu-gqgb
36
vulnerability VCID-vtfd-afct-zkc5
37
vulnerability VCID-w2zm-rxx4-xqcy
38
vulnerability VCID-w5kh-x8en-yke7
39
vulnerability VCID-wupv-hcad-4yfs
40
vulnerability VCID-xgmq-ybaw-ckae
41
vulnerability VCID-xju1-g3ft-gyge
42
vulnerability VCID-xzfd-upm6-6fa8
43
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6
1
url pkg:composer/moodle/moodle@4.3.3
purl pkg:composer/moodle/moodle@4.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-396x-a5g1-p3a1
5
vulnerability VCID-3dr4-hds3-ckbr
6
vulnerability VCID-3ee8-byud-7kab
7
vulnerability VCID-3v15-csmz-sfe9
8
vulnerability VCID-43r9-m1xz-5qge
9
vulnerability VCID-575h-xhz7-augs
10
vulnerability VCID-5uk3-pd1j-ykgr
11
vulnerability VCID-5zy2-a2hw-tuba
12
vulnerability VCID-67tn-z6kv-vybp
13
vulnerability VCID-7a6m-m4t2-5ydp
14
vulnerability VCID-7zqn-5pyf-pyg9
15
vulnerability VCID-82cj-8rk2-kygn
16
vulnerability VCID-87yg-v5af-mfd4
17
vulnerability VCID-8evy-5d1w-3fbm
18
vulnerability VCID-8w1a-ft6h-g7bt
19
vulnerability VCID-8ydw-ymjw-4qhd
20
vulnerability VCID-95fs-szzk-c3h5
21
vulnerability VCID-9fr5-4a3g-pbga
22
vulnerability VCID-b53y-qvcd-9bc2
23
vulnerability VCID-b9r4-vfvf-r3cx
24
vulnerability VCID-bhnn-ae5z-53cm
25
vulnerability VCID-bjdy-pxgn-hkcx
26
vulnerability VCID-bn3p-ccnj-3ubw
27
vulnerability VCID-c6hn-kyf7-g3e4
28
vulnerability VCID-c7uy-k6wn-s3f9
29
vulnerability VCID-catf-58r7-87h5
30
vulnerability VCID-cnqj-gehg-xuhk
31
vulnerability VCID-e6pf-zcvz-mqfr
32
vulnerability VCID-eaej-5e2e-yfcr
33
vulnerability VCID-ez7r-y64f-dbbx
34
vulnerability VCID-j897-5zfk-rbhk
35
vulnerability VCID-j9sx-pf51-buhe
36
vulnerability VCID-jejy-353t-x3de
37
vulnerability VCID-jn27-7e3d-1uc6
38
vulnerability VCID-k5ku-5n57-w7e3
39
vulnerability VCID-kymv-5vap-7qf7
40
vulnerability VCID-meau-pbrc-5ffv
41
vulnerability VCID-mm87-9trq-ykca
42
vulnerability VCID-n5hx-mc7q-sua6
43
vulnerability VCID-ndgr-yj2x-tbcr
44
vulnerability VCID-nsvy-6gvu-wqe1
45
vulnerability VCID-nw5a-bxbt-vbg5
46
vulnerability VCID-pg53-92qn-67f4
47
vulnerability VCID-pv24-2amy-4yb9
48
vulnerability VCID-qm72-ebb5-67cr
49
vulnerability VCID-rdtm-s21h-87az
50
vulnerability VCID-s97q-jcmh-ukdh
51
vulnerability VCID-sja2-g5vp-tqev
52
vulnerability VCID-tr6w-mqxr-vueh
53
vulnerability VCID-tvbe-wwjn-jkby
54
vulnerability VCID-uc4c-cw57-tyfp
55
vulnerability VCID-ud6t-af1d-2yfh
56
vulnerability VCID-vbmp-pabj-r3es
57
vulnerability VCID-vfa1-gfnu-gqgb
58
vulnerability VCID-vtfd-afct-zkc5
59
vulnerability VCID-w2zm-rxx4-xqcy
60
vulnerability VCID-w5kh-x8en-yke7
61
vulnerability VCID-w84c-jzp6-zkee
62
vulnerability VCID-wsj3-x2v5-y7gc
63
vulnerability VCID-wupv-hcad-4yfs
64
vulnerability VCID-x3bb-7vq7-aqaa
65
vulnerability VCID-xgmq-ybaw-ckae
66
vulnerability VCID-xju1-g3ft-gyge
67
vulnerability VCID-xkgj-r2v3-k3gt
68
vulnerability VCID-xzfd-upm6-6fa8
69
vulnerability VCID-zcea-b6q9-6fb9
70
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3
aliases CVE-2024-25980, GHSA-cp8m-h777-g4p3
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7z7h-w68u-1bc7
14
url VCID-82cj-8rk2-kygn
vulnerability_id VCID-82cj-8rk2-kygn
summary A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files were not properly validated during processing. If a malicious backup file is restored, it could lead to unintended execution of server-side code. Since restore capabilities are typically available to privileged users, exploitation requires authenticated access. Successful exploitation could result in full compromise of the Moodle server.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-26045
reference_id
reference_type
scores
0
value 0.00113
scoring_system epss
scoring_elements 0.29729
published_at 2026-06-14T12:55:00Z
1
value 0.00113
scoring_system epss
scoring_elements 0.2953
published_at 2026-06-11T12:55:00Z
2
value 0.00113
scoring_system epss
scoring_elements 0.29727
published_at 2026-06-12T12:55:00Z
3
value 0.00113
scoring_system epss
scoring_elements 0.29745
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-26045
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/566054ba11f609a6d48d09b32e85d435d49927da
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/566054ba11f609a6d48d09b32e85d435d49927da
3
reference_url https://moodle.org/mod/forum/discuss.php?d=473314
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=473314
4
reference_url https://access.redhat.com/security/cve/CVE-2026-26045
reference_id CVE-2026-26045
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-24T04:56:33Z/
url https://access.redhat.com/security/cve/CVE-2026-26045
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-26045
reference_id CVE-2026-26045
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-26045
6
reference_url https://github.com/advisories/GHSA-ggxq-2mg9-8966
reference_id GHSA-ggxq-2mg9-8966
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-ggxq-2mg9-8966
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2440901
reference_id show_bug.cgi?id=2440901
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-24T04:56:33Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2440901
fixed_packages
0
url pkg:composer/moodle/moodle@4.5.9
purl pkg:composer/moodle/moodle@4.5.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.9
1
url pkg:composer/moodle/moodle@5.0.5
purl pkg:composer/moodle/moodle@5.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.5
2
url pkg:composer/moodle/moodle@5.1.2
purl pkg:composer/moodle/moodle@5.1.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.2
aliases CVE-2026-26045, GHSA-ggxq-2mg9-8966
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-82cj-8rk2-kygn
15
url VCID-8w1a-ft6h-g7bt
vulnerability_id VCID-8w1a-ft6h-g7bt
summary A flaw was found in Moodle. Dynamic tables did not enforce capability checks, which resulted in users having the ability to retrieve information they did not have permission to access.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-45689
reference_id
reference_type
scores
0
value 0.00126
scoring_system epss
scoring_elements 0.31632
published_at 2026-06-13T12:55:00Z
1
value 0.00126
scoring_system epss
scoring_elements 0.31615
published_at 2026-06-14T12:55:00Z
2
value 0.00126
scoring_system epss
scoring_elements 0.31423
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-45689
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/bb466df202a4b4a692006298f93cbba20566949c
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/bb466df202a4b4a692006298f93cbba20566949c
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461894#p1854491
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=461894#p1854491
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-45689
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-45689
5
reference_url https://github.com/advisories/GHSA-j822-x5gg-5r56
reference_id GHSA-j822-x5gg-5r56
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j822-x5gg-5r56
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2309941
reference_id show_bug.cgi?id=2309941
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T19:17:47Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2309941
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.10
purl pkg:composer/moodle/moodle@4.2.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-82cj-8rk2-kygn
2
vulnerability VCID-9fr5-4a3g-pbga
3
vulnerability VCID-j9sx-pf51-buhe
4
vulnerability VCID-kymv-5vap-7qf7
5
vulnerability VCID-nsvy-6gvu-wqe1
6
vulnerability VCID-pg53-92qn-67f4
7
vulnerability VCID-tr6w-mqxr-vueh
8
vulnerability VCID-xju1-g3ft-gyge
9
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.10
1
url pkg:composer/moodle/moodle@4.3.7
purl pkg:composer/moodle/moodle@4.3.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-67tn-z6kv-vybp
4
vulnerability VCID-7a6m-m4t2-5ydp
5
vulnerability VCID-7zqn-5pyf-pyg9
6
vulnerability VCID-82cj-8rk2-kygn
7
vulnerability VCID-87yg-v5af-mfd4
8
vulnerability VCID-8ydw-ymjw-4qhd
9
vulnerability VCID-95fs-szzk-c3h5
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-bn3p-ccnj-3ubw
12
vulnerability VCID-c7uy-k6wn-s3f9
13
vulnerability VCID-eaej-5e2e-yfcr
14
vulnerability VCID-j897-5zfk-rbhk
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-jn27-7e3d-1uc6
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-n5hx-mc7q-sua6
19
vulnerability VCID-nsvy-6gvu-wqe1
20
vulnerability VCID-pg53-92qn-67f4
21
vulnerability VCID-pv24-2amy-4yb9
22
vulnerability VCID-s97q-jcmh-ukdh
23
vulnerability VCID-sja2-g5vp-tqev
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-uc4c-cw57-tyfp
26
vulnerability VCID-w84c-jzp6-zkee
27
vulnerability VCID-wsj3-x2v5-y7gc
28
vulnerability VCID-x3bb-7vq7-aqaa
29
vulnerability VCID-xju1-g3ft-gyge
30
vulnerability VCID-xkgj-r2v3-k3gt
31
vulnerability VCID-zcea-b6q9-6fb9
32
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.7
2
url pkg:composer/moodle/moodle@4.4.3
purl pkg:composer/moodle/moodle@4.4.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-57uf-tz1x-akdt
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8ydw-ymjw-4qhd
10
vulnerability VCID-95fs-szzk-c3h5
11
vulnerability VCID-9fr5-4a3g-pbga
12
vulnerability VCID-bn3p-ccnj-3ubw
13
vulnerability VCID-c7uy-k6wn-s3f9
14
vulnerability VCID-cra3-6x3q-vkap
15
vulnerability VCID-eaej-5e2e-yfcr
16
vulnerability VCID-ebae-b6eb-s7fr
17
vulnerability VCID-fsuz-rgpw-8qd4
18
vulnerability VCID-gapa-a9xy-w3be
19
vulnerability VCID-hh6z-2319-83g4
20
vulnerability VCID-j897-5zfk-rbhk
21
vulnerability VCID-j9sx-pf51-buhe
22
vulnerability VCID-jn27-7e3d-1uc6
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-n5hx-mc7q-sua6
25
vulnerability VCID-nsvy-6gvu-wqe1
26
vulnerability VCID-nw7f-9kxh-dfer
27
vulnerability VCID-p6d8-jya8-vfe2
28
vulnerability VCID-pg53-92qn-67f4
29
vulnerability VCID-pv24-2amy-4yb9
30
vulnerability VCID-s97q-jcmh-ukdh
31
vulnerability VCID-sja2-g5vp-tqev
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-uc4c-cw57-tyfp
34
vulnerability VCID-w84c-jzp6-zkee
35
vulnerability VCID-wr3n-bk11-a3bj
36
vulnerability VCID-wsj3-x2v5-y7gc
37
vulnerability VCID-x3bb-7vq7-aqaa
38
vulnerability VCID-x9xg-ujre-3ub9
39
vulnerability VCID-xju1-g3ft-gyge
40
vulnerability VCID-xkgj-r2v3-k3gt
41
vulnerability VCID-zcea-b6q9-6fb9
42
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.3
aliases CVE-2024-45689, GHSA-j822-x5gg-5r56
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8w1a-ft6h-g7bt
16
url VCID-9fr5-4a3g-pbga
vulnerability_id VCID-9fr5-4a3g-pbga
summary A vulnerability was found in Moodle. It is possible for users with the "send message" capability to view other users' names that they may not otherwise have access to via an error message in Messaging. Note: The name returned follows the full name format configured on the site.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-48896
reference_id
reference_type
scores
0
value 0.0031
scoring_system epss
scoring_elements 0.54573
published_at 2026-06-11T12:55:00Z
1
value 0.0031
scoring_system epss
scoring_elements 0.54715
published_at 2026-06-13T12:55:00Z
2
value 0.0031
scoring_system epss
scoring_elements 0.54698
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-48896
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-48896
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-48896
3
reference_url https://github.com/advisories/GHSA-cq5f-wv7p-5gfc
reference_id GHSA-cq5f-wv7p-5gfc
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cq5f-wv7p-5gfc
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2318822
reference_id show_bug.cgi?id=2318822
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-18T14:57:51Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2318822
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.11
purl pkg:composer/moodle/moodle@4.2.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-82cj-8rk2-kygn
2
vulnerability VCID-kymv-5vap-7qf7
3
vulnerability VCID-nsvy-6gvu-wqe1
4
vulnerability VCID-pg53-92qn-67f4
5
vulnerability VCID-tr6w-mqxr-vueh
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11
1
url pkg:composer/moodle/moodle@4.3.8
purl pkg:composer/moodle/moodle@4.3.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-67tn-z6kv-vybp
4
vulnerability VCID-7a6m-m4t2-5ydp
5
vulnerability VCID-7zqn-5pyf-pyg9
6
vulnerability VCID-82cj-8rk2-kygn
7
vulnerability VCID-87yg-v5af-mfd4
8
vulnerability VCID-8ydw-ymjw-4qhd
9
vulnerability VCID-95fs-szzk-c3h5
10
vulnerability VCID-bn3p-ccnj-3ubw
11
vulnerability VCID-c7uy-k6wn-s3f9
12
vulnerability VCID-eaej-5e2e-yfcr
13
vulnerability VCID-j897-5zfk-rbhk
14
vulnerability VCID-jn27-7e3d-1uc6
15
vulnerability VCID-kymv-5vap-7qf7
16
vulnerability VCID-n5hx-mc7q-sua6
17
vulnerability VCID-nsvy-6gvu-wqe1
18
vulnerability VCID-pg53-92qn-67f4
19
vulnerability VCID-pv24-2amy-4yb9
20
vulnerability VCID-s97q-jcmh-ukdh
21
vulnerability VCID-sja2-g5vp-tqev
22
vulnerability VCID-tr6w-mqxr-vueh
23
vulnerability VCID-uc4c-cw57-tyfp
24
vulnerability VCID-w84c-jzp6-zkee
25
vulnerability VCID-wsj3-x2v5-y7gc
26
vulnerability VCID-x3bb-7vq7-aqaa
27
vulnerability VCID-xkgj-r2v3-k3gt
28
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8
2
url pkg:composer/moodle/moodle@4.4.4
purl pkg:composer/moodle/moodle@4.4.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-57uf-tz1x-akdt
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8ydw-ymjw-4qhd
10
vulnerability VCID-95fs-szzk-c3h5
11
vulnerability VCID-bn3p-ccnj-3ubw
12
vulnerability VCID-c7uy-k6wn-s3f9
13
vulnerability VCID-cra3-6x3q-vkap
14
vulnerability VCID-eaej-5e2e-yfcr
15
vulnerability VCID-ebae-b6eb-s7fr
16
vulnerability VCID-fsuz-rgpw-8qd4
17
vulnerability VCID-gapa-a9xy-w3be
18
vulnerability VCID-hh6z-2319-83g4
19
vulnerability VCID-j897-5zfk-rbhk
20
vulnerability VCID-jn27-7e3d-1uc6
21
vulnerability VCID-kymv-5vap-7qf7
22
vulnerability VCID-n5hx-mc7q-sua6
23
vulnerability VCID-nsvy-6gvu-wqe1
24
vulnerability VCID-nw7f-9kxh-dfer
25
vulnerability VCID-pg53-92qn-67f4
26
vulnerability VCID-pv24-2amy-4yb9
27
vulnerability VCID-s97q-jcmh-ukdh
28
vulnerability VCID-sja2-g5vp-tqev
29
vulnerability VCID-tr6w-mqxr-vueh
30
vulnerability VCID-uc4c-cw57-tyfp
31
vulnerability VCID-w84c-jzp6-zkee
32
vulnerability VCID-wr3n-bk11-a3bj
33
vulnerability VCID-wsj3-x2v5-y7gc
34
vulnerability VCID-x3bb-7vq7-aqaa
35
vulnerability VCID-x9xg-ujre-3ub9
36
vulnerability VCID-xkgj-r2v3-k3gt
37
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4
aliases CVE-2024-48896, GHSA-cq5f-wv7p-5gfc
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9fr5-4a3g-pbga
17
url VCID-9szm-emq8-gfdf
vulnerability_id VCID-9szm-emq8-gfdf
summary Students in "Only see own membership" groups could see other students in the group, which should be hidden.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5542
reference_id
reference_type
scores
0
value 0.00268
scoring_system epss
scoring_elements 0.50748
published_at 2026-06-14T12:55:00Z
1
value 0.00268
scoring_system epss
scoring_elements 0.5061
published_at 2026-06-11T12:55:00Z
2
value 0.00268
scoring_system epss
scoring_elements 0.50744
published_at 2026-06-12T12:55:00Z
3
value 0.00268
scoring_system epss
scoring_elements 0.50761
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5542
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/b0bb97ee3b481dd85d8f1ed3612f70c9d1939014
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/b0bb97ee3b481dd85d8f1ed3612f70c9d1939014
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5542
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5542
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451583
reference_id discuss.php?d=451583
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-21T17:05:11Z/
url https://moodle.org/mod/forum/discuss.php?d=451583
5
reference_url https://github.com/advisories/GHSA-8mm2-m2gp-c6x2
reference_id GHSA-8mm2-m2gp-c6x2
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8mm2-m2gp-c6x2
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-21T17:05:11Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243441
reference_id show_bug.cgi?id=2243441
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-21T17:05:11Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243441
fixed_packages
0
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5542, GHSA-8mm2-m2gp-c6x2
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9szm-emq8-gfdf
18
url VCID-9u8e-pp4p-nqht
vulnerability_id VCID-9u8e-pp4p-nqht
summary In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user who also has direct access to the web server outside of the Moodle webroot could utilise a local file include to achieve remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5550
reference_id
reference_type
scores
0
value 0.01474
scoring_system epss
scoring_elements 0.81438
published_at 2026-06-13T12:55:00Z
1
value 0.01474
scoring_system epss
scoring_elements 0.81369
published_at 2026-06-11T12:55:00Z
2
value 0.01474
scoring_system epss
scoring_elements 0.81429
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5550
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/77766f9c8af8fc8d861d7ac09ce4e1f6e72faca7
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/77766f9c8af8fc8d861d7ac09ce4e1f6e72faca7
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5550
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5550
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451591
reference_id discuss.php?d=451591
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-27T19:58:39Z/
url https://moodle.org/mod/forum/discuss.php?d=451591
5
reference_url https://github.com/advisories/GHSA-5cvx-cwpx-9rjh
reference_id GHSA-5cvx-cwpx-9rjh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5cvx-cwpx-9rjh
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-72249
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-72249
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-27T19:58:39Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-72249
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243452
reference_id show_bug.cgi?id=2243452
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-27T19:58:39Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243452
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5550, GHSA-5cvx-cwpx-9rjh
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9u8e-pp4p-nqht
19
url VCID-b2xd-3ek1-27b9
vulnerability_id VCID-b2xd-3ek1-27b9
summary The URL parameters accepted by forum search were not limited to the allowed parameters.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-25979
reference_id
reference_type
scores
0
value 0.00163
scoring_system epss
scoring_elements 0.37234
published_at 2026-06-14T12:55:00Z
1
value 0.00163
scoring_system epss
scoring_elements 0.37045
published_at 2026-06-11T12:55:00Z
2
value 0.00163
scoring_system epss
scoring_elements 0.37223
published_at 2026-06-12T12:55:00Z
3
value 0.00163
scoring_system epss
scoring_elements 0.37249
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-25979
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/6eaeeda6cf759672def05a85afe9e4d521739166
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/6eaeeda6cf759672def05a85afe9e4d521739166
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-25979
reference_id CVE-2024-25979
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-25979
5
reference_url https://moodle.org/mod/forum/discuss.php?d=455635
reference_id discuss.php?d=455635
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/
url https://moodle.org/mod/forum/discuss.php?d=455635
6
reference_url https://github.com/advisories/GHSA-6vjf-48fh-vxxj
reference_id GHSA-6vjf-48fh-vxxj
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-6vjf-48fh-vxxj
7
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-69774
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-69774
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-69774
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
reference_id KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264095
reference_id show_bug.cgi?id=2264095
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2264095
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.6
purl pkg:composer/moodle/moodle@4.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5uk3-pd1j-ykgr
7
vulnerability VCID-5zy2-a2hw-tuba
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-b53y-qvcd-9bc2
12
vulnerability VCID-b9r4-vfvf-r3cx
13
vulnerability VCID-bhnn-ae5z-53cm
14
vulnerability VCID-bjdy-pxgn-hkcx
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-catf-58r7-87h5
17
vulnerability VCID-cnqj-gehg-xuhk
18
vulnerability VCID-e6pf-zcvz-mqfr
19
vulnerability VCID-ez7r-y64f-dbbx
20
vulnerability VCID-j9sx-pf51-buhe
21
vulnerability VCID-jejy-353t-x3de
22
vulnerability VCID-k5ku-5n57-w7e3
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-meau-pbrc-5ffv
25
vulnerability VCID-mm87-9trq-ykca
26
vulnerability VCID-ndgr-yj2x-tbcr
27
vulnerability VCID-nsvy-6gvu-wqe1
28
vulnerability VCID-nw5a-bxbt-vbg5
29
vulnerability VCID-pg53-92qn-67f4
30
vulnerability VCID-qm72-ebb5-67cr
31
vulnerability VCID-rdtm-s21h-87az
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-ud6t-af1d-2yfh
34
vulnerability VCID-vbmp-pabj-r3es
35
vulnerability VCID-vfa1-gfnu-gqgb
36
vulnerability VCID-vtfd-afct-zkc5
37
vulnerability VCID-w2zm-rxx4-xqcy
38
vulnerability VCID-w5kh-x8en-yke7
39
vulnerability VCID-wupv-hcad-4yfs
40
vulnerability VCID-xgmq-ybaw-ckae
41
vulnerability VCID-xju1-g3ft-gyge
42
vulnerability VCID-xzfd-upm6-6fa8
43
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6
1
url pkg:composer/moodle/moodle@4.3.3
purl pkg:composer/moodle/moodle@4.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-396x-a5g1-p3a1
5
vulnerability VCID-3dr4-hds3-ckbr
6
vulnerability VCID-3ee8-byud-7kab
7
vulnerability VCID-3v15-csmz-sfe9
8
vulnerability VCID-43r9-m1xz-5qge
9
vulnerability VCID-575h-xhz7-augs
10
vulnerability VCID-5uk3-pd1j-ykgr
11
vulnerability VCID-5zy2-a2hw-tuba
12
vulnerability VCID-67tn-z6kv-vybp
13
vulnerability VCID-7a6m-m4t2-5ydp
14
vulnerability VCID-7zqn-5pyf-pyg9
15
vulnerability VCID-82cj-8rk2-kygn
16
vulnerability VCID-87yg-v5af-mfd4
17
vulnerability VCID-8evy-5d1w-3fbm
18
vulnerability VCID-8w1a-ft6h-g7bt
19
vulnerability VCID-8ydw-ymjw-4qhd
20
vulnerability VCID-95fs-szzk-c3h5
21
vulnerability VCID-9fr5-4a3g-pbga
22
vulnerability VCID-b53y-qvcd-9bc2
23
vulnerability VCID-b9r4-vfvf-r3cx
24
vulnerability VCID-bhnn-ae5z-53cm
25
vulnerability VCID-bjdy-pxgn-hkcx
26
vulnerability VCID-bn3p-ccnj-3ubw
27
vulnerability VCID-c6hn-kyf7-g3e4
28
vulnerability VCID-c7uy-k6wn-s3f9
29
vulnerability VCID-catf-58r7-87h5
30
vulnerability VCID-cnqj-gehg-xuhk
31
vulnerability VCID-e6pf-zcvz-mqfr
32
vulnerability VCID-eaej-5e2e-yfcr
33
vulnerability VCID-ez7r-y64f-dbbx
34
vulnerability VCID-j897-5zfk-rbhk
35
vulnerability VCID-j9sx-pf51-buhe
36
vulnerability VCID-jejy-353t-x3de
37
vulnerability VCID-jn27-7e3d-1uc6
38
vulnerability VCID-k5ku-5n57-w7e3
39
vulnerability VCID-kymv-5vap-7qf7
40
vulnerability VCID-meau-pbrc-5ffv
41
vulnerability VCID-mm87-9trq-ykca
42
vulnerability VCID-n5hx-mc7q-sua6
43
vulnerability VCID-ndgr-yj2x-tbcr
44
vulnerability VCID-nsvy-6gvu-wqe1
45
vulnerability VCID-nw5a-bxbt-vbg5
46
vulnerability VCID-pg53-92qn-67f4
47
vulnerability VCID-pv24-2amy-4yb9
48
vulnerability VCID-qm72-ebb5-67cr
49
vulnerability VCID-rdtm-s21h-87az
50
vulnerability VCID-s97q-jcmh-ukdh
51
vulnerability VCID-sja2-g5vp-tqev
52
vulnerability VCID-tr6w-mqxr-vueh
53
vulnerability VCID-tvbe-wwjn-jkby
54
vulnerability VCID-uc4c-cw57-tyfp
55
vulnerability VCID-ud6t-af1d-2yfh
56
vulnerability VCID-vbmp-pabj-r3es
57
vulnerability VCID-vfa1-gfnu-gqgb
58
vulnerability VCID-vtfd-afct-zkc5
59
vulnerability VCID-w2zm-rxx4-xqcy
60
vulnerability VCID-w5kh-x8en-yke7
61
vulnerability VCID-w84c-jzp6-zkee
62
vulnerability VCID-wsj3-x2v5-y7gc
63
vulnerability VCID-wupv-hcad-4yfs
64
vulnerability VCID-x3bb-7vq7-aqaa
65
vulnerability VCID-xgmq-ybaw-ckae
66
vulnerability VCID-xju1-g3ft-gyge
67
vulnerability VCID-xkgj-r2v3-k3gt
68
vulnerability VCID-xzfd-upm6-6fa8
69
vulnerability VCID-zcea-b6q9-6fb9
70
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3
aliases CVE-2024-25979, GHSA-6vjf-48fh-vxxj
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b2xd-3ek1-27b9
20
url VCID-b53y-qvcd-9bc2
vulnerability_id VCID-b53y-qvcd-9bc2
summary In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80712
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80712
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34003
reference_id
reference_type
scores
0
value 0.00177
scoring_system epss
scoring_elements 0.39244
published_at 2026-06-13T12:55:00Z
1
value 0.00177
scoring_system epss
scoring_elements 0.39219
published_at 2026-06-12T12:55:00Z
2
value 0.00177
scoring_system epss
scoring_elements 0.39047
published_at 2026-06-11T12:55:00Z
3
value 0.00177
scoring_system epss
scoring_elements 0.39236
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34003
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34003
reference_id CVE-2024-34003
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34003
4
reference_url https://moodle.org/mod/forum/discuss.php?d=458391
reference_id discuss.php?d=458391
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-01T13:16:51Z/
url https://moodle.org/mod/forum/discuss.php?d=458391
5
reference_url https://github.com/advisories/GHSA-jg4f-8w9x-jv35
reference_id GHSA-jg4f-8w9x-jv35
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jg4f-8w9x-jv35
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34003, GHSA-jg4f-8w9x-jv35
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b53y-qvcd-9bc2
21
url VCID-b9r4-vfvf-r3cx
vulnerability_id VCID-b9r4-vfvf-r3cx
summary In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34005
reference_id
reference_type
scores
0
value 0.00445
scoring_system epss
scoring_elements 0.63955
published_at 2026-06-13T12:55:00Z
1
value 0.00445
scoring_system epss
scoring_elements 0.63953
published_at 2026-06-14T12:55:00Z
2
value 0.00445
scoring_system epss
scoring_elements 0.63838
published_at 2026-06-11T12:55:00Z
3
value 0.00445
scoring_system epss
scoring_elements 0.6394
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34005
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/ffa045e09912349ed08d6591ec84cb83e57235cc
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/ffa045e09912349ed08d6591ec84cb83e57235cc
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34005
reference_id CVE-2024-34005
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34005
4
reference_url https://moodle.org/mod/forum/discuss.php?d=458394
reference_id discuss.php?d=458394
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T19:36:05Z/
url https://moodle.org/mod/forum/discuss.php?d=458394
5
reference_url https://github.com/advisories/GHSA-r99q-hmqv-xw8w
reference_id GHSA-r99q-hmqv-xw8w
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r99q-hmqv-xw8w
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34005, GHSA-r99q-hmqv-xw8w
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b9r4-vfvf-r3cx
22
url VCID-bhnn-ae5z-53cm
vulnerability_id VCID-bhnn-ae5z-53cm
summary Incorrect validation of allowed event types in a calendar web service made it possible for some users to create events with types/audiences they did not have permission to publish to.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81247
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81247
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-33996
reference_id
reference_type
scores
0
value 0.00175
scoring_system epss
scoring_elements 0.39027
published_at 2026-06-13T12:55:00Z
1
value 0.00175
scoring_system epss
scoring_elements 0.39004
published_at 2026-06-12T12:55:00Z
2
value 0.00175
scoring_system epss
scoring_elements 0.38832
published_at 2026-06-11T12:55:00Z
3
value 0.00175
scoring_system epss
scoring_elements 0.39018
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-33996
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-33996
reference_id CVE-2024-33996
reference_type
scores
0
value 6.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-33996
4
reference_url https://moodle.org/mod/forum/discuss.php?d=458384#p1840909
reference_id discuss.php?d=458384#p1840909
reference_type
scores
0
value 6.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-01T13:14:42Z/
url https://moodle.org/mod/forum/discuss.php?d=458384#p1840909
5
reference_url https://github.com/advisories/GHSA-4qww-rxq6-x7gf
reference_id GHSA-4qww-rxq6-x7gf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4qww-rxq6-x7gf
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-33996, GHSA-4qww-rxq6-x7gf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bhnn-ae5z-53cm
23
url VCID-bjdy-pxgn-hkcx
vulnerability_id VCID-bjdy-pxgn-hkcx
summary A flaw was found in moodle. The cURL wrapper in Moodle strips HTTPAUTH and USERPWD headers during emulated redirects, but retains other original request headers, so HTTP authorization header information could be unintentionally sent in requests to redirect URLs.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82136
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82136
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43432
reference_id
reference_type
scores
0
value 0.00336
scoring_system epss
scoring_elements 0.56827
published_at 2026-06-11T12:55:00Z
1
value 0.00336
scoring_system epss
scoring_elements 0.56948
published_at 2026-06-12T12:55:00Z
2
value 0.00336
scoring_system epss
scoring_elements 0.56952
published_at 2026-06-14T12:55:00Z
3
value 0.00336
scoring_system epss
scoring_elements 0.56962
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43432
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43432
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43432
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461200
reference_id discuss.php?d=461200
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:06:57Z/
url https://moodle.org/mod/forum/discuss.php?d=461200
5
reference_url https://github.com/advisories/GHSA-7wmp-2xmx-g6h8
reference_id GHSA-7wmp-2xmx-g6h8
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-7wmp-2xmx-g6h8
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304260
reference_id show_bug.cgi?id=2304260
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:06:57Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304260
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43432, GHSA-7wmp-2xmx-g6h8
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bjdy-pxgn-hkcx
24
url VCID-c6hn-kyf7-g3e4
vulnerability_id VCID-c6hn-kyf7-g3e4
summary A flaw was found in Moodle. Additional checks were required to ensure users can only delete their OAuth2-linked accounts.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-45690
reference_id
reference_type
scores
0
value 0.00393
scoring_system epss
scoring_elements 0.60689
published_at 2026-06-11T12:55:00Z
1
value 0.00393
scoring_system epss
scoring_elements 0.60795
published_at 2026-06-14T12:55:00Z
2
value 0.00393
scoring_system epss
scoring_elements 0.60804
published_at 2026-06-13T12:55:00Z
3
value 0.00393
scoring_system epss
scoring_elements 0.60794
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-45690
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/809629e5afcd5be087e65668fe6cf67f2f4f5145
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/809629e5afcd5be087e65668fe6cf67f2f4f5145
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461895#p1854492
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=461895#p1854492
4
reference_url https://moodle.org/security
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/security
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-45690
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-45690
6
reference_url https://github.com/advisories/GHSA-fhg2-r2h9-h7q8
reference_id GHSA-fhg2-r2h9-h7q8
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fhg2-r2h9-h7q8
7
reference_url https://moodle.org/security/
reference_id security
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:15:47Z/
url https://moodle.org/security/
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2309939
reference_id show_bug.cgi?id=2309939
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:15:47Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2309939
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.10
purl pkg:composer/moodle/moodle@4.2.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-82cj-8rk2-kygn
2
vulnerability VCID-9fr5-4a3g-pbga
3
vulnerability VCID-j9sx-pf51-buhe
4
vulnerability VCID-kymv-5vap-7qf7
5
vulnerability VCID-nsvy-6gvu-wqe1
6
vulnerability VCID-pg53-92qn-67f4
7
vulnerability VCID-tr6w-mqxr-vueh
8
vulnerability VCID-xju1-g3ft-gyge
9
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.10
1
url pkg:composer/moodle/moodle@4.3.7
purl pkg:composer/moodle/moodle@4.3.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-67tn-z6kv-vybp
4
vulnerability VCID-7a6m-m4t2-5ydp
5
vulnerability VCID-7zqn-5pyf-pyg9
6
vulnerability VCID-82cj-8rk2-kygn
7
vulnerability VCID-87yg-v5af-mfd4
8
vulnerability VCID-8ydw-ymjw-4qhd
9
vulnerability VCID-95fs-szzk-c3h5
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-bn3p-ccnj-3ubw
12
vulnerability VCID-c7uy-k6wn-s3f9
13
vulnerability VCID-eaej-5e2e-yfcr
14
vulnerability VCID-j897-5zfk-rbhk
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-jn27-7e3d-1uc6
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-n5hx-mc7q-sua6
19
vulnerability VCID-nsvy-6gvu-wqe1
20
vulnerability VCID-pg53-92qn-67f4
21
vulnerability VCID-pv24-2amy-4yb9
22
vulnerability VCID-s97q-jcmh-ukdh
23
vulnerability VCID-sja2-g5vp-tqev
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-uc4c-cw57-tyfp
26
vulnerability VCID-w84c-jzp6-zkee
27
vulnerability VCID-wsj3-x2v5-y7gc
28
vulnerability VCID-x3bb-7vq7-aqaa
29
vulnerability VCID-xju1-g3ft-gyge
30
vulnerability VCID-xkgj-r2v3-k3gt
31
vulnerability VCID-zcea-b6q9-6fb9
32
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.7
2
url pkg:composer/moodle/moodle@4.4.3
purl pkg:composer/moodle/moodle@4.4.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-57uf-tz1x-akdt
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8ydw-ymjw-4qhd
10
vulnerability VCID-95fs-szzk-c3h5
11
vulnerability VCID-9fr5-4a3g-pbga
12
vulnerability VCID-bn3p-ccnj-3ubw
13
vulnerability VCID-c7uy-k6wn-s3f9
14
vulnerability VCID-cra3-6x3q-vkap
15
vulnerability VCID-eaej-5e2e-yfcr
16
vulnerability VCID-ebae-b6eb-s7fr
17
vulnerability VCID-fsuz-rgpw-8qd4
18
vulnerability VCID-gapa-a9xy-w3be
19
vulnerability VCID-hh6z-2319-83g4
20
vulnerability VCID-j897-5zfk-rbhk
21
vulnerability VCID-j9sx-pf51-buhe
22
vulnerability VCID-jn27-7e3d-1uc6
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-n5hx-mc7q-sua6
25
vulnerability VCID-nsvy-6gvu-wqe1
26
vulnerability VCID-nw7f-9kxh-dfer
27
vulnerability VCID-p6d8-jya8-vfe2
28
vulnerability VCID-pg53-92qn-67f4
29
vulnerability VCID-pv24-2amy-4yb9
30
vulnerability VCID-s97q-jcmh-ukdh
31
vulnerability VCID-sja2-g5vp-tqev
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-uc4c-cw57-tyfp
34
vulnerability VCID-w84c-jzp6-zkee
35
vulnerability VCID-wr3n-bk11-a3bj
36
vulnerability VCID-wsj3-x2v5-y7gc
37
vulnerability VCID-x3bb-7vq7-aqaa
38
vulnerability VCID-x9xg-ujre-3ub9
39
vulnerability VCID-xju1-g3ft-gyge
40
vulnerability VCID-xkgj-r2v3-k3gt
41
vulnerability VCID-zcea-b6q9-6fb9
42
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.3
aliases CVE-2024-45690, GHSA-fhg2-r2h9-h7q8
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c6hn-kyf7-g3e4
25
url VCID-catf-58r7-87h5
vulnerability_id VCID-catf-58r7-87h5
summary A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43436
reference_id
reference_type
scores
0
value 0.00496
scoring_system epss
scoring_elements 0.66237
published_at 2026-06-11T12:55:00Z
1
value 0.00496
scoring_system epss
scoring_elements 0.66342
published_at 2026-06-14T12:55:00Z
2
value 0.00496
scoring_system epss
scoring_elements 0.66344
published_at 2026-06-13T12:55:00Z
3
value 0.00496
scoring_system epss
scoring_elements 0.66331
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43436
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43436
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43436
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461206
reference_id discuss.php?d=461206
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:37Z/
url https://moodle.org/mod/forum/discuss.php?d=461206
4
reference_url https://github.com/advisories/GHSA-mx26-62xm-2p83
reference_id GHSA-mx26-62xm-2p83
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-mx26-62xm-2p83
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304264
reference_id show_bug.cgi?id=2304264
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:37Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304264
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43436, GHSA-mx26-62xm-2p83
risk_score 3.2
exploitability 0.5
weighted_severity 6.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-catf-58r7-87h5
26
url VCID-cnqj-gehg-xuhk
vulnerability_id VCID-cnqj-gehg-xuhk
summary Incorrect CSRF token checks resulted in multiple CSRF risks.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-38276
reference_id
reference_type
scores
0
value 0.00268
scoring_system epss
scoring_elements 0.50708
published_at 2026-06-14T12:55:00Z
1
value 0.00268
scoring_system epss
scoring_elements 0.50722
published_at 2026-06-13T12:55:00Z
2
value 0.00268
scoring_system epss
scoring_elements 0.50705
published_at 2026-06-12T12:55:00Z
3
value 0.00268
scoring_system epss
scoring_elements 0.50571
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-38276
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/093aedf79889114d004495f05969168b646b0285
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/093aedf79889114d004495f05969168b646b0285
3
reference_url https://github.com/moodle/moodle/commit/137d311fd1354c679b974633512a771e6e0559a1
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/137d311fd1354c679b974633512a771e6e0559a1
4
reference_url https://github.com/moodle/moodle/commit/30fadc3686fa7490860a0bd87a29636139dfb371
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/30fadc3686fa7490860a0bd87a29636139dfb371
5
reference_url https://github.com/moodle/moodle/commit/31ced0851189a6879e4cd27c7e65d21dd9d6e87e
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/31ced0851189a6879e4cd27c7e65d21dd9d6e87e
6
reference_url https://github.com/moodle/moodle/commit/57f20b6cb352893871c3afdfa8a4c09a96e16764
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/57f20b6cb352893871c3afdfa8a4c09a96e16764
7
reference_url https://github.com/moodle/moodle/commit/756090ed79aa056d0b5f58e7a1dff67f139f76b4
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/756090ed79aa056d0b5f58e7a1dff67f139f76b4
8
reference_url https://github.com/moodle/moodle/commit/9af9711c0a78ebad87d49bcb369ff813bc57d0a7
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/9af9711c0a78ebad87d49bcb369ff813bc57d0a7
9
reference_url https://github.com/moodle/moodle/commit/a0d8c025f732d5c18a2b9d1a8e5cbee35dce86f4
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/a0d8c025f732d5c18a2b9d1a8e5cbee35dce86f4
10
reference_url https://github.com/moodle/moodle/commit/c18b59808cefe7b54c85dce6bf2cc71601080667
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/c18b59808cefe7b54c85dce6bf2cc71601080667
11
reference_url https://github.com/moodle/moodle/commit/c1aacb3e2884ea4dcc221c5ef2e449ce345f78ae
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/c1aacb3e2884ea4dcc221c5ef2e449ce345f78ae
12
reference_url https://github.com/moodle/moodle/commit/c5b1604e8136db6d72057dd8052955058489206c
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/c5b1604e8136db6d72057dd8052955058489206c
13
reference_url https://github.com/moodle/moodle/commit/da8e8cee6ffaf7c184eded97e1016f20c9de0561
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/da8e8cee6ffaf7c184eded97e1016f20c9de0561
14
reference_url https://github.com/moodle/moodle/commit/dc84fcfab06a4a0fe37797b8422e9fe3a1031c3e
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/dc84fcfab06a4a0fe37797b8422e9fe3a1031c3e
15
reference_url https://github.com/moodle/moodle/commit/e1dab5f38166a2ff62983178f7bf8f0ed3a61090
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/e1dab5f38166a2ff62983178f7bf8f0ed3a61090
16
reference_url https://github.com/moodle/moodle/commit/e23f603c41055ab92f9b430cf0e7a54b4e120f95
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/e23f603c41055ab92f9b430cf0e7a54b4e120f95
17
reference_url https://github.com/moodle/moodle/commit/f2807dee5bc777d9c58b7a70cba6e4c21ee02ea1
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/f2807dee5bc777d9c58b7a70cba6e4c21ee02ea1
18
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
19
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
20
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-38276
reference_id CVE-2024-38276
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-38276
21
reference_url https://moodle.org/mod/forum/discuss.php?d=459501
reference_id discuss.php?d=459501
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-25T17:33:38Z/
url https://moodle.org/mod/forum/discuss.php?d=459501
22
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
reference_id F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-25T17:33:38Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/
23
reference_url https://github.com/advisories/GHSA-356g-7x36-7m34
reference_id GHSA-356g-7x36-7m34
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-356g-7x36-7m34
24
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
reference_id GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-25T17:33:38Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.8
purl pkg:composer/moodle/moodle@4.2.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-575h-xhz7-augs
4
vulnerability VCID-82cj-8rk2-kygn
5
vulnerability VCID-8w1a-ft6h-g7bt
6
vulnerability VCID-9fr5-4a3g-pbga
7
vulnerability VCID-bjdy-pxgn-hkcx
8
vulnerability VCID-c6hn-kyf7-g3e4
9
vulnerability VCID-catf-58r7-87h5
10
vulnerability VCID-e6pf-zcvz-mqfr
11
vulnerability VCID-j9sx-pf51-buhe
12
vulnerability VCID-k5ku-5n57-w7e3
13
vulnerability VCID-kymv-5vap-7qf7
14
vulnerability VCID-meau-pbrc-5ffv
15
vulnerability VCID-ndgr-yj2x-tbcr
16
vulnerability VCID-nsvy-6gvu-wqe1
17
vulnerability VCID-pg53-92qn-67f4
18
vulnerability VCID-rdtm-s21h-87az
19
vulnerability VCID-tr6w-mqxr-vueh
20
vulnerability VCID-ud6t-af1d-2yfh
21
vulnerability VCID-vbmp-pabj-r3es
22
vulnerability VCID-vfa1-gfnu-gqgb
23
vulnerability VCID-w2zm-rxx4-xqcy
24
vulnerability VCID-xgmq-ybaw-ckae
25
vulnerability VCID-xju1-g3ft-gyge
26
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8
1
url pkg:composer/moodle/moodle@4.3.5
purl pkg:composer/moodle/moodle@4.3.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-9fr5-4a3g-pbga
16
vulnerability VCID-bjdy-pxgn-hkcx
17
vulnerability VCID-bn3p-ccnj-3ubw
18
vulnerability VCID-c6hn-kyf7-g3e4
19
vulnerability VCID-c7uy-k6wn-s3f9
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-e6pf-zcvz-mqfr
22
vulnerability VCID-eaej-5e2e-yfcr
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-k5ku-5n57-w7e3
27
vulnerability VCID-kymv-5vap-7qf7
28
vulnerability VCID-meau-pbrc-5ffv
29
vulnerability VCID-n5hx-mc7q-sua6
30
vulnerability VCID-ndgr-yj2x-tbcr
31
vulnerability VCID-nsvy-6gvu-wqe1
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-ud6t-af1d-2yfh
40
vulnerability VCID-vbmp-pabj-r3es
41
vulnerability VCID-vfa1-gfnu-gqgb
42
vulnerability VCID-w2zm-rxx4-xqcy
43
vulnerability VCID-w84c-jzp6-zkee
44
vulnerability VCID-wsj3-x2v5-y7gc
45
vulnerability VCID-x3bb-7vq7-aqaa
46
vulnerability VCID-xgmq-ybaw-ckae
47
vulnerability VCID-xju1-g3ft-gyge
48
vulnerability VCID-xkgj-r2v3-k3gt
49
vulnerability VCID-zcea-b6q9-6fb9
50
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5
2
url pkg:composer/moodle/moodle@4.4.1
purl pkg:composer/moodle/moodle@4.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-2ua4-y1mx-t7f4
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3s11-9e4p-pygy
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-57uf-tz1x-akdt
8
vulnerability VCID-67tn-z6kv-vybp
9
vulnerability VCID-7a6m-m4t2-5ydp
10
vulnerability VCID-7zqn-5pyf-pyg9
11
vulnerability VCID-82cj-8rk2-kygn
12
vulnerability VCID-87yg-v5af-mfd4
13
vulnerability VCID-8w1a-ft6h-g7bt
14
vulnerability VCID-8ydw-ymjw-4qhd
15
vulnerability VCID-95fs-szzk-c3h5
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-bjdy-pxgn-hkcx
18
vulnerability VCID-bn3p-ccnj-3ubw
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-c7uy-k6wn-s3f9
21
vulnerability VCID-catf-58r7-87h5
22
vulnerability VCID-cra3-6x3q-vkap
23
vulnerability VCID-e6pf-zcvz-mqfr
24
vulnerability VCID-eaej-5e2e-yfcr
25
vulnerability VCID-ebae-b6eb-s7fr
26
vulnerability VCID-fsuz-rgpw-8qd4
27
vulnerability VCID-gapa-a9xy-w3be
28
vulnerability VCID-hh6z-2319-83g4
29
vulnerability VCID-j897-5zfk-rbhk
30
vulnerability VCID-j9sx-pf51-buhe
31
vulnerability VCID-jn27-7e3d-1uc6
32
vulnerability VCID-k5ku-5n57-w7e3
33
vulnerability VCID-kymv-5vap-7qf7
34
vulnerability VCID-meau-pbrc-5ffv
35
vulnerability VCID-n5hx-mc7q-sua6
36
vulnerability VCID-ndgr-yj2x-tbcr
37
vulnerability VCID-ndsq-chgj-4kcq
38
vulnerability VCID-nsvy-6gvu-wqe1
39
vulnerability VCID-nw7f-9kxh-dfer
40
vulnerability VCID-p6d8-jya8-vfe2
41
vulnerability VCID-pg53-92qn-67f4
42
vulnerability VCID-pv24-2amy-4yb9
43
vulnerability VCID-q51n-px1r-tkh4
44
vulnerability VCID-rdtm-s21h-87az
45
vulnerability VCID-s97q-jcmh-ukdh
46
vulnerability VCID-sja2-g5vp-tqev
47
vulnerability VCID-tr6w-mqxr-vueh
48
vulnerability VCID-uc4c-cw57-tyfp
49
vulnerability VCID-ud6t-af1d-2yfh
50
vulnerability VCID-vbmp-pabj-r3es
51
vulnerability VCID-vfa1-gfnu-gqgb
52
vulnerability VCID-w2zm-rxx4-xqcy
53
vulnerability VCID-w84c-jzp6-zkee
54
vulnerability VCID-wr3n-bk11-a3bj
55
vulnerability VCID-wsj3-x2v5-y7gc
56
vulnerability VCID-x3bb-7vq7-aqaa
57
vulnerability VCID-x9xg-ujre-3ub9
58
vulnerability VCID-xgmq-ybaw-ckae
59
vulnerability VCID-xju1-g3ft-gyge
60
vulnerability VCID-xkgj-r2v3-k3gt
61
vulnerability VCID-zcea-b6q9-6fb9
62
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1
aliases CVE-2024-38276, GHSA-356g-7x36-7m34
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cnqj-gehg-xuhk
27
url VCID-e6pf-zcvz-mqfr
vulnerability_id VCID-e6pf-zcvz-mqfr
summary The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check, leading to a CSRF vulnerability.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43434
reference_id
reference_type
scores
0
value 0.00522
scoring_system epss
scoring_elements 0.67339
published_at 2026-06-11T12:55:00Z
1
value 0.00522
scoring_system epss
scoring_elements 0.67441
published_at 2026-06-14T12:55:00Z
2
value 0.00522
scoring_system epss
scoring_elements 0.67444
published_at 2026-06-13T12:55:00Z
3
value 0.00522
scoring_system epss
scoring_elements 0.6743
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43434
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value 8.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43434
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value 8.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43434
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461203
reference_id discuss.php?d=461203
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value 8.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:44Z/
url https://moodle.org/mod/forum/discuss.php?d=461203
4
reference_url https://github.com/advisories/GHSA-x87r-37q5-mmr8
reference_id GHSA-x87r-37q5-mmr8
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-x87r-37q5-mmr8
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304262
reference_id show_bug.cgi?id=2304262
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value 8.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:44Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304262
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43434, GHSA-x87r-37q5-mmr8
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e6pf-zcvz-mqfr
28
url VCID-epz3-rnb8-bybr
vulnerability_id VCID-epz3-rnb8-bybr
summary The link to update all installed language packs did not include the necessary token to prevent a CSRF risk.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-25982
reference_id
reference_type
scores
0
value 0.0038
scoring_system epss
scoring_elements 0.59967
published_at 2026-06-14T12:55:00Z
1
value 0.0038
scoring_system epss
scoring_elements 0.59856
published_at 2026-06-11T12:55:00Z
2
value 0.0038
scoring_system epss
scoring_elements 0.59964
published_at 2026-06-12T12:55:00Z
3
value 0.0038
scoring_system epss
scoring_elements 0.59976
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-25982
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/bac703c534d05d4502580fbe32447d5c777869bf
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/bac703c534d05d4502580fbe32447d5c777869bf
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-25982
reference_id CVE-2024-25982
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-25982
5
reference_url https://moodle.org/mod/forum/discuss.php?d=455638
reference_id discuss.php?d=455638
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/
url https://moodle.org/mod/forum/discuss.php?d=455638
6
reference_url https://github.com/advisories/GHSA-7pjp-fm93-p6pj
reference_id GHSA-7pjp-fm93-p6pj
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-7pjp-fm93-p6pj
7
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-54749
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-54749
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-54749
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
reference_id KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264098
reference_id show_bug.cgi?id=2264098
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2264098
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.6
purl pkg:composer/moodle/moodle@4.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5uk3-pd1j-ykgr
7
vulnerability VCID-5zy2-a2hw-tuba
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-b53y-qvcd-9bc2
12
vulnerability VCID-b9r4-vfvf-r3cx
13
vulnerability VCID-bhnn-ae5z-53cm
14
vulnerability VCID-bjdy-pxgn-hkcx
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-catf-58r7-87h5
17
vulnerability VCID-cnqj-gehg-xuhk
18
vulnerability VCID-e6pf-zcvz-mqfr
19
vulnerability VCID-ez7r-y64f-dbbx
20
vulnerability VCID-j9sx-pf51-buhe
21
vulnerability VCID-jejy-353t-x3de
22
vulnerability VCID-k5ku-5n57-w7e3
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-meau-pbrc-5ffv
25
vulnerability VCID-mm87-9trq-ykca
26
vulnerability VCID-ndgr-yj2x-tbcr
27
vulnerability VCID-nsvy-6gvu-wqe1
28
vulnerability VCID-nw5a-bxbt-vbg5
29
vulnerability VCID-pg53-92qn-67f4
30
vulnerability VCID-qm72-ebb5-67cr
31
vulnerability VCID-rdtm-s21h-87az
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-ud6t-af1d-2yfh
34
vulnerability VCID-vbmp-pabj-r3es
35
vulnerability VCID-vfa1-gfnu-gqgb
36
vulnerability VCID-vtfd-afct-zkc5
37
vulnerability VCID-w2zm-rxx4-xqcy
38
vulnerability VCID-w5kh-x8en-yke7
39
vulnerability VCID-wupv-hcad-4yfs
40
vulnerability VCID-xgmq-ybaw-ckae
41
vulnerability VCID-xju1-g3ft-gyge
42
vulnerability VCID-xzfd-upm6-6fa8
43
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6
1
url pkg:composer/moodle/moodle@4.3.3
purl pkg:composer/moodle/moodle@4.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-396x-a5g1-p3a1
5
vulnerability VCID-3dr4-hds3-ckbr
6
vulnerability VCID-3ee8-byud-7kab
7
vulnerability VCID-3v15-csmz-sfe9
8
vulnerability VCID-43r9-m1xz-5qge
9
vulnerability VCID-575h-xhz7-augs
10
vulnerability VCID-5uk3-pd1j-ykgr
11
vulnerability VCID-5zy2-a2hw-tuba
12
vulnerability VCID-67tn-z6kv-vybp
13
vulnerability VCID-7a6m-m4t2-5ydp
14
vulnerability VCID-7zqn-5pyf-pyg9
15
vulnerability VCID-82cj-8rk2-kygn
16
vulnerability VCID-87yg-v5af-mfd4
17
vulnerability VCID-8evy-5d1w-3fbm
18
vulnerability VCID-8w1a-ft6h-g7bt
19
vulnerability VCID-8ydw-ymjw-4qhd
20
vulnerability VCID-95fs-szzk-c3h5
21
vulnerability VCID-9fr5-4a3g-pbga
22
vulnerability VCID-b53y-qvcd-9bc2
23
vulnerability VCID-b9r4-vfvf-r3cx
24
vulnerability VCID-bhnn-ae5z-53cm
25
vulnerability VCID-bjdy-pxgn-hkcx
26
vulnerability VCID-bn3p-ccnj-3ubw
27
vulnerability VCID-c6hn-kyf7-g3e4
28
vulnerability VCID-c7uy-k6wn-s3f9
29
vulnerability VCID-catf-58r7-87h5
30
vulnerability VCID-cnqj-gehg-xuhk
31
vulnerability VCID-e6pf-zcvz-mqfr
32
vulnerability VCID-eaej-5e2e-yfcr
33
vulnerability VCID-ez7r-y64f-dbbx
34
vulnerability VCID-j897-5zfk-rbhk
35
vulnerability VCID-j9sx-pf51-buhe
36
vulnerability VCID-jejy-353t-x3de
37
vulnerability VCID-jn27-7e3d-1uc6
38
vulnerability VCID-k5ku-5n57-w7e3
39
vulnerability VCID-kymv-5vap-7qf7
40
vulnerability VCID-meau-pbrc-5ffv
41
vulnerability VCID-mm87-9trq-ykca
42
vulnerability VCID-n5hx-mc7q-sua6
43
vulnerability VCID-ndgr-yj2x-tbcr
44
vulnerability VCID-nsvy-6gvu-wqe1
45
vulnerability VCID-nw5a-bxbt-vbg5
46
vulnerability VCID-pg53-92qn-67f4
47
vulnerability VCID-pv24-2amy-4yb9
48
vulnerability VCID-qm72-ebb5-67cr
49
vulnerability VCID-rdtm-s21h-87az
50
vulnerability VCID-s97q-jcmh-ukdh
51
vulnerability VCID-sja2-g5vp-tqev
52
vulnerability VCID-tr6w-mqxr-vueh
53
vulnerability VCID-tvbe-wwjn-jkby
54
vulnerability VCID-uc4c-cw57-tyfp
55
vulnerability VCID-ud6t-af1d-2yfh
56
vulnerability VCID-vbmp-pabj-r3es
57
vulnerability VCID-vfa1-gfnu-gqgb
58
vulnerability VCID-vtfd-afct-zkc5
59
vulnerability VCID-w2zm-rxx4-xqcy
60
vulnerability VCID-w5kh-x8en-yke7
61
vulnerability VCID-w84c-jzp6-zkee
62
vulnerability VCID-wsj3-x2v5-y7gc
63
vulnerability VCID-wupv-hcad-4yfs
64
vulnerability VCID-x3bb-7vq7-aqaa
65
vulnerability VCID-xgmq-ybaw-ckae
66
vulnerability VCID-xju1-g3ft-gyge
67
vulnerability VCID-xkgj-r2v3-k3gt
68
vulnerability VCID-xzfd-upm6-6fa8
69
vulnerability VCID-zcea-b6q9-6fb9
70
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3
aliases CVE-2024-25982, GHSA-7pjp-fm93-p6pj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-epz3-rnb8-bybr
29
url VCID-ez7r-y64f-dbbx
vulnerability_id VCID-ez7r-y64f-dbbx
summary Insufficient escaping of participants' names in the participants page table resulted in a stored XSS risk when interacting with some features.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81354
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81354
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-33998
reference_id
reference_type
scores
0
value 0.01399
scoring_system epss
scoring_elements 0.80829
published_at 2026-06-11T12:55:00Z
1
value 0.01399
scoring_system epss
scoring_elements 0.809
published_at 2026-06-13T12:55:00Z
2
value 0.01399
scoring_system epss
scoring_elements 0.80891
published_at 2026-06-14T12:55:00Z
3
value 0.01399
scoring_system epss
scoring_elements 0.80889
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-33998
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/66da9394993d97861f6c80bc4ec4ee9b513d2f33
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/66da9394993d97861f6c80bc4ec4ee9b513d2f33
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-33998
reference_id CVE-2024-33998
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-33998
5
reference_url https://moodle.org/mod/forum/discuss.php?d=458386
reference_id discuss.php?d=458386
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T14:26:53Z/
url https://moodle.org/mod/forum/discuss.php?d=458386
6
reference_url https://github.com/advisories/GHSA-xqhh-253w-4q5f
reference_id GHSA-xqhh-253w-4q5f
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xqhh-253w-4q5f
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-33998, GHSA-xqhh-253w-4q5f
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ez7r-y64f-dbbx
30
url VCID-f5ys-s8gt-5fcv
vulnerability_id VCID-f5ys-s8gt-5fcv
summary A limited SQL injection risk was identified on the Mnet SSO access control page. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77193
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77193
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-35132
reference_id
reference_type
scores
0
value 0.00256
scoring_system epss
scoring_elements 0.49267
published_at 2026-06-11T12:55:00Z
1
value 0.00256
scoring_system epss
scoring_elements 0.49409
published_at 2026-06-14T12:55:00Z
2
value 0.00256
scoring_system epss
scoring_elements 0.49422
published_at 2026-06-13T12:55:00Z
3
value 0.00256
scoring_system epss
scoring_elements 0.49404
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-35132
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-35132
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-35132
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
reference_id 7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
11
reference_url https://moodle.org/mod/forum/discuss.php?d=447830
reference_id discuss.php?d=447830
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/
url https://moodle.org/mod/forum/discuss.php?d=447830
12
reference_url https://github.com/advisories/GHSA-49mv-vfcp-8gg9
reference_id GHSA-49mv-vfcp-8gg9
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-49mv-vfcp-8gg9
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
reference_id I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2214371
reference_id show_bug.cgi?id=2214371
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2214371
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.1
purl pkg:composer/moodle/moodle@4.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-35xa-1mjs-a3au
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-575h-xhz7-augs
8
vulnerability VCID-59gr-d6p5-u7fv
9
vulnerability VCID-5uk3-pd1j-ykgr
10
vulnerability VCID-5zy2-a2hw-tuba
11
vulnerability VCID-67af-4zk5-sfb2
12
vulnerability VCID-6h6h-ny96-x7hu
13
vulnerability VCID-7z7h-w68u-1bc7
14
vulnerability VCID-82cj-8rk2-kygn
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-9szm-emq8-gfdf
18
vulnerability VCID-9u8e-pp4p-nqht
19
vulnerability VCID-b2xd-3ek1-27b9
20
vulnerability VCID-b53y-qvcd-9bc2
21
vulnerability VCID-b9r4-vfvf-r3cx
22
vulnerability VCID-bhnn-ae5z-53cm
23
vulnerability VCID-bjdy-pxgn-hkcx
24
vulnerability VCID-c6hn-kyf7-g3e4
25
vulnerability VCID-catf-58r7-87h5
26
vulnerability VCID-cnqj-gehg-xuhk
27
vulnerability VCID-e6pf-zcvz-mqfr
28
vulnerability VCID-epz3-rnb8-bybr
29
vulnerability VCID-ez7r-y64f-dbbx
30
vulnerability VCID-g8bf-eeaa-hygf
31
vulnerability VCID-gtz8-utju-qfah
32
vulnerability VCID-j9sx-pf51-buhe
33
vulnerability VCID-jejy-353t-x3de
34
vulnerability VCID-k5ku-5n57-w7e3
35
vulnerability VCID-kegp-rnfw-83b4
36
vulnerability VCID-kymv-5vap-7qf7
37
vulnerability VCID-meau-pbrc-5ffv
38
vulnerability VCID-mm87-9trq-ykca
39
vulnerability VCID-mnm9-ngbe-c3ad
40
vulnerability VCID-mtan-pjt6-1bca
41
vulnerability VCID-ndgr-yj2x-tbcr
42
vulnerability VCID-nsvy-6gvu-wqe1
43
vulnerability VCID-nw5a-bxbt-vbg5
44
vulnerability VCID-pg53-92qn-67f4
45
vulnerability VCID-qm72-ebb5-67cr
46
vulnerability VCID-rdtm-s21h-87az
47
vulnerability VCID-t8ha-9bhp-fbbq
48
vulnerability VCID-tr6w-mqxr-vueh
49
vulnerability VCID-u1ke-y4et-6ye8
50
vulnerability VCID-ud6t-af1d-2yfh
51
vulnerability VCID-uuqh-tq51-tbex
52
vulnerability VCID-vbmp-pabj-r3es
53
vulnerability VCID-vfa1-gfnu-gqgb
54
vulnerability VCID-vtfd-afct-zkc5
55
vulnerability VCID-w2zm-rxx4-xqcy
56
vulnerability VCID-w5kh-x8en-yke7
57
vulnerability VCID-wf3q-rpbt-pfg7
58
vulnerability VCID-wupv-hcad-4yfs
59
vulnerability VCID-xgmq-ybaw-ckae
60
vulnerability VCID-xju1-g3ft-gyge
61
vulnerability VCID-xzfd-upm6-6fa8
62
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1
aliases CVE-2023-35132, GHSA-49mv-vfcp-8gg9
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f5ys-s8gt-5fcv
31
url VCID-g8bf-eeaa-hygf
vulnerability_id VCID-g8bf-eeaa-hygf
summary Insufficient web service capability checks made it possible to move categories a user had permission to manage, to a parent category they did not have the capability to manage.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5549
reference_id
reference_type
scores
0
value 0.00256
scoring_system epss
scoring_elements 0.49412
published_at 2026-06-14T12:55:00Z
1
value 0.00256
scoring_system epss
scoring_elements 0.49269
published_at 2026-06-11T12:55:00Z
2
value 0.00256
scoring_system epss
scoring_elements 0.49407
published_at 2026-06-12T12:55:00Z
3
value 0.00256
scoring_system epss
scoring_elements 0.49425
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5549
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/5a765e124c950b1e4313c9bf96ea2dd194f65c75
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/5a765e124c950b1e4313c9bf96ea2dd194f65c75
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5549
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5549
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451590
reference_id discuss.php?d=451590
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:16:10Z/
url https://moodle.org/mod/forum/discuss.php?d=451590
5
reference_url https://github.com/advisories/GHSA-fm5h-58g2-4m3f
reference_id GHSA-fm5h-58g2-4m3f
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fm5h-58g2-4m3f
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-66730
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-66730
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:16:10Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-66730
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243451
reference_id show_bug.cgi?id=2243451
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:16:10Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243451
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5549, GHSA-fm5h-58g2-4m3f
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g8bf-eeaa-hygf
32
url VCID-gtz8-utju-qfah
vulnerability_id VCID-gtz8-utju-qfah
summary
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77846
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77846
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5548
reference_id
reference_type
scores
0
value 0.00277
scoring_system epss
scoring_elements 0.51458
published_at 2026-06-11T12:55:00Z
1
value 0.00277
scoring_system epss
scoring_elements 0.51589
published_at 2026-06-12T12:55:00Z
2
value 0.00277
scoring_system epss
scoring_elements 0.51601
published_at 2026-06-13T12:55:00Z
3
value 0.00277
scoring_system epss
scoring_elements 0.51587
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5548
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243449
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=2243449
3
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
4
reference_url https://github.com/moodle/moodle/commit/7679452caff6faa33f00d3f0589c5190bc01a933
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/7679452caff6faa33f00d3f0589c5190bc01a933
5
reference_url https://moodle.org/mod/forum/discuss.php?d=451589
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=451589
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5548
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5548
7
reference_url https://github.com/advisories/GHSA-cwh2-q44x-5w3c
reference_id GHSA-cwh2-q44x-5w3c
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cwh2-q44x-5w3c
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5548, GHSA-cwh2-q44x-5w3c
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gtz8-utju-qfah
33
url VCID-j9sx-pf51-buhe
vulnerability_id VCID-j9sx-pf51-buhe
summary A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-48897
reference_id
reference_type
scores
0
value 0.00229
scoring_system epss
scoring_elements 0.46016
published_at 2026-06-12T12:55:00Z
1
value 0.00229
scoring_system epss
scoring_elements 0.46009
published_at 2026-06-14T12:55:00Z
2
value 0.00229
scoring_system epss
scoring_elements 0.45871
published_at 2026-06-11T12:55:00Z
3
value 0.00229
scoring_system epss
scoring_elements 0.46023
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-48897
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-48897
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-48897
3
reference_url https://github.com/advisories/GHSA-x3x9-349x-2485
reference_id GHSA-x3x9-349x-2485
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-x3x9-349x-2485
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2318821
reference_id show_bug.cgi?id=2318821
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-19T14:51:39Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2318821
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.11
purl pkg:composer/moodle/moodle@4.2.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-82cj-8rk2-kygn
2
vulnerability VCID-kymv-5vap-7qf7
3
vulnerability VCID-nsvy-6gvu-wqe1
4
vulnerability VCID-pg53-92qn-67f4
5
vulnerability VCID-tr6w-mqxr-vueh
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11
1
url pkg:composer/moodle/moodle@4.3.8
purl pkg:composer/moodle/moodle@4.3.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-67tn-z6kv-vybp
4
vulnerability VCID-7a6m-m4t2-5ydp
5
vulnerability VCID-7zqn-5pyf-pyg9
6
vulnerability VCID-82cj-8rk2-kygn
7
vulnerability VCID-87yg-v5af-mfd4
8
vulnerability VCID-8ydw-ymjw-4qhd
9
vulnerability VCID-95fs-szzk-c3h5
10
vulnerability VCID-bn3p-ccnj-3ubw
11
vulnerability VCID-c7uy-k6wn-s3f9
12
vulnerability VCID-eaej-5e2e-yfcr
13
vulnerability VCID-j897-5zfk-rbhk
14
vulnerability VCID-jn27-7e3d-1uc6
15
vulnerability VCID-kymv-5vap-7qf7
16
vulnerability VCID-n5hx-mc7q-sua6
17
vulnerability VCID-nsvy-6gvu-wqe1
18
vulnerability VCID-pg53-92qn-67f4
19
vulnerability VCID-pv24-2amy-4yb9
20
vulnerability VCID-s97q-jcmh-ukdh
21
vulnerability VCID-sja2-g5vp-tqev
22
vulnerability VCID-tr6w-mqxr-vueh
23
vulnerability VCID-uc4c-cw57-tyfp
24
vulnerability VCID-w84c-jzp6-zkee
25
vulnerability VCID-wsj3-x2v5-y7gc
26
vulnerability VCID-x3bb-7vq7-aqaa
27
vulnerability VCID-xkgj-r2v3-k3gt
28
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8
2
url pkg:composer/moodle/moodle@4.4.4
purl pkg:composer/moodle/moodle@4.4.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-57uf-tz1x-akdt
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8ydw-ymjw-4qhd
10
vulnerability VCID-95fs-szzk-c3h5
11
vulnerability VCID-bn3p-ccnj-3ubw
12
vulnerability VCID-c7uy-k6wn-s3f9
13
vulnerability VCID-cra3-6x3q-vkap
14
vulnerability VCID-eaej-5e2e-yfcr
15
vulnerability VCID-ebae-b6eb-s7fr
16
vulnerability VCID-fsuz-rgpw-8qd4
17
vulnerability VCID-gapa-a9xy-w3be
18
vulnerability VCID-hh6z-2319-83g4
19
vulnerability VCID-j897-5zfk-rbhk
20
vulnerability VCID-jn27-7e3d-1uc6
21
vulnerability VCID-kymv-5vap-7qf7
22
vulnerability VCID-n5hx-mc7q-sua6
23
vulnerability VCID-nsvy-6gvu-wqe1
24
vulnerability VCID-nw7f-9kxh-dfer
25
vulnerability VCID-pg53-92qn-67f4
26
vulnerability VCID-pv24-2amy-4yb9
27
vulnerability VCID-s97q-jcmh-ukdh
28
vulnerability VCID-sja2-g5vp-tqev
29
vulnerability VCID-tr6w-mqxr-vueh
30
vulnerability VCID-uc4c-cw57-tyfp
31
vulnerability VCID-w84c-jzp6-zkee
32
vulnerability VCID-wr3n-bk11-a3bj
33
vulnerability VCID-wsj3-x2v5-y7gc
34
vulnerability VCID-x3bb-7vq7-aqaa
35
vulnerability VCID-x9xg-ujre-3ub9
36
vulnerability VCID-xkgj-r2v3-k3gt
37
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4
aliases CVE-2024-48897, GHSA-x3x9-349x-2485
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j9sx-pf51-buhe
34
url VCID-jejy-353t-x3de
vulnerability_id VCID-jejy-353t-x3de
summary In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34004
reference_id
reference_type
scores
0
value 0.00307
scoring_system epss
scoring_elements 0.54291
published_at 2026-06-11T12:55:00Z
1
value 0.00307
scoring_system epss
scoring_elements 0.54418
published_at 2026-06-14T12:55:00Z
2
value 0.00307
scoring_system epss
scoring_elements 0.54433
published_at 2026-06-13T12:55:00Z
3
value 0.00307
scoring_system epss
scoring_elements 0.54417
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34004
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34004
reference_id CVE-2024-34004
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34004
3
reference_url https://moodle.org/mod/forum/discuss.php?d=458393
reference_id discuss.php?d=458393
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T14:26:27Z/
url https://moodle.org/mod/forum/discuss.php?d=458393
4
reference_url https://github.com/advisories/GHSA-q3cm-ccrm-2mr6
reference_id GHSA-q3cm-ccrm-2mr6
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-q3cm-ccrm-2mr6
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34004, GHSA-q3cm-ccrm-2mr6
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jejy-353t-x3de
35
url VCID-jgqf-6s2h-vqd8
vulnerability_id VCID-jgqf-6s2h-vqd8
summary Inadequate access control in Moodle LMS. This vulnerability could allow a local user with a student role to create arbitrary events intended for users with higher roles. It could also allow the attacker to add events to the calendar of all users without their prior consent.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-1439
reference_id
reference_type
scores
0
value 0.00068
scoring_system epss
scoring_elements 0.21388
published_at 2026-06-12T12:55:00Z
1
value 0.00068
scoring_system epss
scoring_elements 0.21375
published_at 2026-06-14T12:55:00Z
2
value 0.00068
scoring_system epss
scoring_elements 0.21206
published_at 2026-06-11T12:55:00Z
3
value 0.00068
scoring_system epss
scoring_elements 0.21401
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-1439
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-1439
reference_id CVE-2024-1439
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-1439
3
reference_url https://github.com/advisories/GHSA-5p2x-8427-9fgp
reference_id GHSA-5p2x-8427-9fgp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5p2x-8427-9fgp
4
reference_url https://www.incibe.es/en/incibe-cert/notices/aviso/inadequate-access-control-vulnerability-moodle
reference_id inadequate-access-control-vulnerability-moodle
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-12T16:28:28Z/
url https://www.incibe.es/en/incibe-cert/notices/aviso/inadequate-access-control-vulnerability-moodle
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.1
purl pkg:composer/moodle/moodle@4.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-35xa-1mjs-a3au
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-575h-xhz7-augs
8
vulnerability VCID-59gr-d6p5-u7fv
9
vulnerability VCID-5uk3-pd1j-ykgr
10
vulnerability VCID-5zy2-a2hw-tuba
11
vulnerability VCID-67af-4zk5-sfb2
12
vulnerability VCID-6h6h-ny96-x7hu
13
vulnerability VCID-7z7h-w68u-1bc7
14
vulnerability VCID-82cj-8rk2-kygn
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-9szm-emq8-gfdf
18
vulnerability VCID-9u8e-pp4p-nqht
19
vulnerability VCID-b2xd-3ek1-27b9
20
vulnerability VCID-b53y-qvcd-9bc2
21
vulnerability VCID-b9r4-vfvf-r3cx
22
vulnerability VCID-bhnn-ae5z-53cm
23
vulnerability VCID-bjdy-pxgn-hkcx
24
vulnerability VCID-c6hn-kyf7-g3e4
25
vulnerability VCID-catf-58r7-87h5
26
vulnerability VCID-cnqj-gehg-xuhk
27
vulnerability VCID-e6pf-zcvz-mqfr
28
vulnerability VCID-epz3-rnb8-bybr
29
vulnerability VCID-ez7r-y64f-dbbx
30
vulnerability VCID-g8bf-eeaa-hygf
31
vulnerability VCID-gtz8-utju-qfah
32
vulnerability VCID-j9sx-pf51-buhe
33
vulnerability VCID-jejy-353t-x3de
34
vulnerability VCID-k5ku-5n57-w7e3
35
vulnerability VCID-kegp-rnfw-83b4
36
vulnerability VCID-kymv-5vap-7qf7
37
vulnerability VCID-meau-pbrc-5ffv
38
vulnerability VCID-mm87-9trq-ykca
39
vulnerability VCID-mnm9-ngbe-c3ad
40
vulnerability VCID-mtan-pjt6-1bca
41
vulnerability VCID-ndgr-yj2x-tbcr
42
vulnerability VCID-nsvy-6gvu-wqe1
43
vulnerability VCID-nw5a-bxbt-vbg5
44
vulnerability VCID-pg53-92qn-67f4
45
vulnerability VCID-qm72-ebb5-67cr
46
vulnerability VCID-rdtm-s21h-87az
47
vulnerability VCID-t8ha-9bhp-fbbq
48
vulnerability VCID-tr6w-mqxr-vueh
49
vulnerability VCID-u1ke-y4et-6ye8
50
vulnerability VCID-ud6t-af1d-2yfh
51
vulnerability VCID-uuqh-tq51-tbex
52
vulnerability VCID-vbmp-pabj-r3es
53
vulnerability VCID-vfa1-gfnu-gqgb
54
vulnerability VCID-vtfd-afct-zkc5
55
vulnerability VCID-w2zm-rxx4-xqcy
56
vulnerability VCID-w5kh-x8en-yke7
57
vulnerability VCID-wf3q-rpbt-pfg7
58
vulnerability VCID-wupv-hcad-4yfs
59
vulnerability VCID-xgmq-ybaw-ckae
60
vulnerability VCID-xju1-g3ft-gyge
61
vulnerability VCID-xzfd-upm6-6fa8
62
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1
aliases CVE-2024-1439, GHSA-5p2x-8427-9fgp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jgqf-6s2h-vqd8
36
url VCID-k5ku-5n57-w7e3
vulnerability_id VCID-k5ku-5n57-w7e3
summary A flaw was found in pdfTeX. Insufficient sanitizing in the TeX notation filter resulted in an arbitrary file read risk on sites where pdfTeX is available, such as those with TeX Live installed.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43426
reference_id
reference_type
scores
0
value 0.00911
scoring_system epss
scoring_elements 0.76276
published_at 2026-06-11T12:55:00Z
1
value 0.00911
scoring_system epss
scoring_elements 0.76355
published_at 2026-06-14T12:55:00Z
2
value 0.00911
scoring_system epss
scoring_elements 0.7636
published_at 2026-06-13T12:55:00Z
3
value 0.00911
scoring_system epss
scoring_elements 0.76346
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43426
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82745
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82745
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43426
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43426
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461194
reference_id discuss.php?d=461194
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:41:10Z/
url https://moodle.org/mod/forum/discuss.php?d=461194
5
reference_url https://github.com/advisories/GHSA-vjmm-r9gg-425m
reference_id GHSA-vjmm-r9gg-425m
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vjmm-r9gg-425m
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304254
reference_id show_bug.cgi?id=2304254
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:41:10Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304254
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43426, GHSA-vjmm-r9gg-425m
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k5ku-5n57-w7e3
37
url VCID-kegp-rnfw-83b4
vulnerability_id VCID-kegp-rnfw-83b4
summary
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79509
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79509
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5544
reference_id
reference_type
scores
0
value 0.00177
scoring_system epss
scoring_elements 0.39023
published_at 2026-06-11T12:55:00Z
1
value 0.00177
scoring_system epss
scoring_elements 0.39196
published_at 2026-06-12T12:55:00Z
2
value 0.00177
scoring_system epss
scoring_elements 0.3922
published_at 2026-06-13T12:55:00Z
3
value 0.00177
scoring_system epss
scoring_elements 0.39212
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5544
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243443
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=2243443
3
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
4
reference_url https://github.com/moodle/moodle/commit/5fec728be9df3c9fc282cd0897c73ca5cfcfea5f
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/5fec728be9df3c9fc282cd0897c73ca5cfcfea5f
5
reference_url https://moodle.org/mod/forum/discuss.php?d=451585
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=451585
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5544
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5544
7
reference_url https://github.com/advisories/GHSA-j5xf-gv89-g422
reference_id GHSA-j5xf-gv89-g422
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j5xf-gv89-g422
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5544, GHSA-j5xf-gv89-g422
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kegp-rnfw-83b4
38
url VCID-kymv-5vap-7qf7
vulnerability_id VCID-kymv-5vap-7qf7
summary An issue in Moodle’s timed assignment feature allowed students to bypass the time restriction, potentially giving them more time than allowed to complete an assessment.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62401
reference_id
reference_type
scores
0
value 0.00041
scoring_system epss
scoring_elements 0.1307
published_at 2026-06-14T12:55:00Z
1
value 0.00041
scoring_system epss
scoring_elements 0.12989
published_at 2026-06-11T12:55:00Z
2
value 0.00041
scoring_system epss
scoring_elements 0.13085
published_at 2026-06-12T12:55:00Z
3
value 0.00041
scoring_system epss
scoring_elements 0.13094
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62401
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/78a3fe6c618676dfc53ea538abbfe35e60674eeb
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/78a3fe6c618676dfc53ea538abbfe35e60674eeb
3
reference_url https://moodle.org/mod/forum/discuss.php?d=470390
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470390
4
reference_url https://access.redhat.com/security/cve/CVE-2025-62401
reference_id CVE-2025-62401
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:38:17Z/
url https://access.redhat.com/security/cve/CVE-2025-62401
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62401
reference_id CVE-2025-62401
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62401
6
reference_url https://github.com/advisories/GHSA-w29j-8phw-ffjf
reference_id GHSA-w29j-8phw-ffjf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-w29j-8phw-ffjf
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404434
reference_id show_bug.cgi?id=2404434
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:38:17Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404434
fixed_packages
0
url pkg:composer/moodle/moodle@4.4.11
purl pkg:composer/moodle/moodle@4.4.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11
1
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
2
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62401, GHSA-w29j-8phw-ffjf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kymv-5vap-7qf7
39
url VCID-meau-pbrc-5ffv
vulnerability_id VCID-meau-pbrc-5ffv
summary A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82576
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 7.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82576
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43425
reference_id
reference_type
scores
0
value 0.88917
scoring_system epss
scoring_elements 0.99543
published_at 2026-06-11T12:55:00Z
1
value 0.88917
scoring_system epss
scoring_elements 0.99544
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43425
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 7.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43425
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 7.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43425
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52350.py
reference_id CVE-2024-43425
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52350.py
5
reference_url https://moodle.org/mod/forum/discuss.php?d=461193
reference_id discuss.php?d=461193
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 7.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:20Z/
url https://moodle.org/mod/forum/discuss.php?d=461193
6
reference_url https://github.com/advisories/GHSA-v6f4-v8h8-3c87
reference_id GHSA-v6f4-v8h8-3c87
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-v6f4-v8h8-3c87
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304253
reference_id show_bug.cgi?id=2304253
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 7.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:20Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304253
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43425, GHSA-v6f4-v8h8-3c87
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-meau-pbrc-5ffv
40
url VCID-mm87-9trq-ykca
vulnerability_id VCID-mm87-9trq-ykca
summary The Chat activity in Moodle 4.3.3 allows students to insert a potentially unwanted HTML A element or IMG element, or HTML content that leads to a performance degradation. NOTE: the vendor's Using_Chat page says "If you know some HTML code, you can use it in your text to do things like insert images, play sounds or create different coloured and sized text." This page also says "Chat is due to be removed from standard Moodle."
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-28593
reference_id
reference_type
scores
0
value 0.00142
scoring_system epss
scoring_elements 0.34181
published_at 2026-06-11T12:55:00Z
1
value 0.00142
scoring_system epss
scoring_elements 0.34363
published_at 2026-06-14T12:55:00Z
2
value 0.00142
scoring_system epss
scoring_elements 0.34359
published_at 2026-06-12T12:55:00Z
3
value 0.00142
scoring_system epss
scoring_elements 0.34383
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-28593
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-28593
reference_id CVE-2024-28593
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-28593
3
reference_url https://gist.githubusercontent.com/minendie/4f23174687bc4d8eb7f727d9959b5399/raw/9ce573cebcce5521d9d6f826ab68f3780036b874/CVE-2024-28593.txt
reference_id CVE-2024-28593.txt
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-25T16:47:10Z/
url https://gist.githubusercontent.com/minendie/4f23174687bc4d8eb7f727d9959b5399/raw/9ce573cebcce5521d9d6f826ab68f3780036b874/CVE-2024-28593.txt
4
reference_url https://github.com/advisories/GHSA-f6mh-79vh-2hv7
reference_id GHSA-f6mh-79vh-2hv7
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f6mh-79vh-2hv7
5
reference_url https://medium.com/%40lamscun/how-do-i-change-htmli-from-low-to-critical-your-email-box-is-safe-e7171efd88fe
reference_id how-do-i-change-htmli-from-low-to-critical-your-email-box-is-safe-e7171efd88fe
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-25T16:47:10Z/
url https://medium.com/%40lamscun/how-do-i-change-htmli-from-low-to-critical-your-email-box-is-safe-e7171efd88fe
6
reference_url https://docs.moodle.org/403/en/Using_Chat
reference_id Using_Chat
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-25T16:47:10Z/
url https://docs.moodle.org/403/en/Using_Chat
fixed_packages
aliases CVE-2024-28593, GHSA-f6mh-79vh-2hv7
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mm87-9trq-ykca
41
url VCID-mnm9-ngbe-c3ad
vulnerability_id VCID-mnm9-ngbe-c3ad
summary Insufficient checks in a web service made it possible to add comments to the comments block on another user's dashboard when it was not otherwise available (e.g., on their profile page).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-25983
reference_id
reference_type
scores
0
value 0.00241
scoring_system epss
scoring_elements 0.47741
published_at 2026-06-14T12:55:00Z
1
value 0.00241
scoring_system epss
scoring_elements 0.47605
published_at 2026-06-11T12:55:00Z
2
value 0.00241
scoring_system epss
scoring_elements 0.47745
published_at 2026-06-12T12:55:00Z
3
value 0.00241
scoring_system epss
scoring_elements 0.47761
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-25983
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/4cae44dd0e9a7da47d08d9b75e0ebba0e4b422f4
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/4cae44dd0e9a7da47d08d9b75e0ebba0e4b422f4
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-25983
reference_id CVE-2024-25983
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-25983
5
reference_url https://moodle.org/mod/forum/discuss.php?d=455641
reference_id discuss.php?d=455641
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/
url https://moodle.org/mod/forum/discuss.php?d=455641
6
reference_url https://github.com/advisories/GHSA-9r26-5w88-qhp9
reference_id GHSA-9r26-5w88-qhp9
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9r26-5w88-qhp9
7
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78300
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78300
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78300
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
reference_id KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264099
reference_id show_bug.cgi?id=2264099
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2264099
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.6
purl pkg:composer/moodle/moodle@4.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5uk3-pd1j-ykgr
7
vulnerability VCID-5zy2-a2hw-tuba
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-b53y-qvcd-9bc2
12
vulnerability VCID-b9r4-vfvf-r3cx
13
vulnerability VCID-bhnn-ae5z-53cm
14
vulnerability VCID-bjdy-pxgn-hkcx
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-catf-58r7-87h5
17
vulnerability VCID-cnqj-gehg-xuhk
18
vulnerability VCID-e6pf-zcvz-mqfr
19
vulnerability VCID-ez7r-y64f-dbbx
20
vulnerability VCID-j9sx-pf51-buhe
21
vulnerability VCID-jejy-353t-x3de
22
vulnerability VCID-k5ku-5n57-w7e3
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-meau-pbrc-5ffv
25
vulnerability VCID-mm87-9trq-ykca
26
vulnerability VCID-ndgr-yj2x-tbcr
27
vulnerability VCID-nsvy-6gvu-wqe1
28
vulnerability VCID-nw5a-bxbt-vbg5
29
vulnerability VCID-pg53-92qn-67f4
30
vulnerability VCID-qm72-ebb5-67cr
31
vulnerability VCID-rdtm-s21h-87az
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-ud6t-af1d-2yfh
34
vulnerability VCID-vbmp-pabj-r3es
35
vulnerability VCID-vfa1-gfnu-gqgb
36
vulnerability VCID-vtfd-afct-zkc5
37
vulnerability VCID-w2zm-rxx4-xqcy
38
vulnerability VCID-w5kh-x8en-yke7
39
vulnerability VCID-wupv-hcad-4yfs
40
vulnerability VCID-xgmq-ybaw-ckae
41
vulnerability VCID-xju1-g3ft-gyge
42
vulnerability VCID-xzfd-upm6-6fa8
43
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6
1
url pkg:composer/moodle/moodle@4.3.3
purl pkg:composer/moodle/moodle@4.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-396x-a5g1-p3a1
5
vulnerability VCID-3dr4-hds3-ckbr
6
vulnerability VCID-3ee8-byud-7kab
7
vulnerability VCID-3v15-csmz-sfe9
8
vulnerability VCID-43r9-m1xz-5qge
9
vulnerability VCID-575h-xhz7-augs
10
vulnerability VCID-5uk3-pd1j-ykgr
11
vulnerability VCID-5zy2-a2hw-tuba
12
vulnerability VCID-67tn-z6kv-vybp
13
vulnerability VCID-7a6m-m4t2-5ydp
14
vulnerability VCID-7zqn-5pyf-pyg9
15
vulnerability VCID-82cj-8rk2-kygn
16
vulnerability VCID-87yg-v5af-mfd4
17
vulnerability VCID-8evy-5d1w-3fbm
18
vulnerability VCID-8w1a-ft6h-g7bt
19
vulnerability VCID-8ydw-ymjw-4qhd
20
vulnerability VCID-95fs-szzk-c3h5
21
vulnerability VCID-9fr5-4a3g-pbga
22
vulnerability VCID-b53y-qvcd-9bc2
23
vulnerability VCID-b9r4-vfvf-r3cx
24
vulnerability VCID-bhnn-ae5z-53cm
25
vulnerability VCID-bjdy-pxgn-hkcx
26
vulnerability VCID-bn3p-ccnj-3ubw
27
vulnerability VCID-c6hn-kyf7-g3e4
28
vulnerability VCID-c7uy-k6wn-s3f9
29
vulnerability VCID-catf-58r7-87h5
30
vulnerability VCID-cnqj-gehg-xuhk
31
vulnerability VCID-e6pf-zcvz-mqfr
32
vulnerability VCID-eaej-5e2e-yfcr
33
vulnerability VCID-ez7r-y64f-dbbx
34
vulnerability VCID-j897-5zfk-rbhk
35
vulnerability VCID-j9sx-pf51-buhe
36
vulnerability VCID-jejy-353t-x3de
37
vulnerability VCID-jn27-7e3d-1uc6
38
vulnerability VCID-k5ku-5n57-w7e3
39
vulnerability VCID-kymv-5vap-7qf7
40
vulnerability VCID-meau-pbrc-5ffv
41
vulnerability VCID-mm87-9trq-ykca
42
vulnerability VCID-n5hx-mc7q-sua6
43
vulnerability VCID-ndgr-yj2x-tbcr
44
vulnerability VCID-nsvy-6gvu-wqe1
45
vulnerability VCID-nw5a-bxbt-vbg5
46
vulnerability VCID-pg53-92qn-67f4
47
vulnerability VCID-pv24-2amy-4yb9
48
vulnerability VCID-qm72-ebb5-67cr
49
vulnerability VCID-rdtm-s21h-87az
50
vulnerability VCID-s97q-jcmh-ukdh
51
vulnerability VCID-sja2-g5vp-tqev
52
vulnerability VCID-tr6w-mqxr-vueh
53
vulnerability VCID-tvbe-wwjn-jkby
54
vulnerability VCID-uc4c-cw57-tyfp
55
vulnerability VCID-ud6t-af1d-2yfh
56
vulnerability VCID-vbmp-pabj-r3es
57
vulnerability VCID-vfa1-gfnu-gqgb
58
vulnerability VCID-vtfd-afct-zkc5
59
vulnerability VCID-w2zm-rxx4-xqcy
60
vulnerability VCID-w5kh-x8en-yke7
61
vulnerability VCID-w84c-jzp6-zkee
62
vulnerability VCID-wsj3-x2v5-y7gc
63
vulnerability VCID-wupv-hcad-4yfs
64
vulnerability VCID-x3bb-7vq7-aqaa
65
vulnerability VCID-xgmq-ybaw-ckae
66
vulnerability VCID-xju1-g3ft-gyge
67
vulnerability VCID-xkgj-r2v3-k3gt
68
vulnerability VCID-xzfd-upm6-6fa8
69
vulnerability VCID-zcea-b6q9-6fb9
70
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3
aliases CVE-2024-25983, GHSA-9r26-5w88-qhp9
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mnm9-ngbe-c3ad
42
url VCID-mtan-pjt6-1bca
vulnerability_id VCID-mtan-pjt6-1bca
summary Insufficient file size checks resulted in a denial of service risk in the file picker's unzip functionality.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-25978
reference_id
reference_type
scores
0
value 0.00292
scoring_system epss
scoring_elements 0.53106
published_at 2026-06-14T12:55:00Z
1
value 0.00292
scoring_system epss
scoring_elements 0.52979
published_at 2026-06-11T12:55:00Z
2
value 0.00292
scoring_system epss
scoring_elements 0.53108
published_at 2026-06-12T12:55:00Z
3
value 0.00292
scoring_system epss
scoring_elements 0.53123
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-25978
1
reference_url https://github.com/moodle/moodle/commit/9ba14233597480fb78c04d531050c090de4e60a2
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/9ba14233597480fb78c04d531050c090de4e60a2
2
reference_url https://github.com/moodle/moodle/commit/a73e0ac76d77b67602f91bb211962813d60bc573
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/a73e0ac76d77b67602f91bb211962813d60bc573
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-25978
reference_id CVE-2024-25978
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-25978
5
reference_url https://moodle.org/mod/forum/discuss.php?d=455634
reference_id discuss.php?d=455634
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/
url https://moodle.org/mod/forum/discuss.php?d=455634
6
reference_url https://github.com/advisories/GHSA-487g-3m3v-hjhq
reference_id GHSA-487g-3m3v-hjhq
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-487g-3m3v-hjhq
7
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-74641
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-74641
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-74641
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
reference_id KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264074
reference_id show_bug.cgi?id=2264074
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2264074
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.6
purl pkg:composer/moodle/moodle@4.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5uk3-pd1j-ykgr
7
vulnerability VCID-5zy2-a2hw-tuba
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-9fr5-4a3g-pbga
11
vulnerability VCID-b53y-qvcd-9bc2
12
vulnerability VCID-b9r4-vfvf-r3cx
13
vulnerability VCID-bhnn-ae5z-53cm
14
vulnerability VCID-bjdy-pxgn-hkcx
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-catf-58r7-87h5
17
vulnerability VCID-cnqj-gehg-xuhk
18
vulnerability VCID-e6pf-zcvz-mqfr
19
vulnerability VCID-ez7r-y64f-dbbx
20
vulnerability VCID-j9sx-pf51-buhe
21
vulnerability VCID-jejy-353t-x3de
22
vulnerability VCID-k5ku-5n57-w7e3
23
vulnerability VCID-kymv-5vap-7qf7
24
vulnerability VCID-meau-pbrc-5ffv
25
vulnerability VCID-mm87-9trq-ykca
26
vulnerability VCID-ndgr-yj2x-tbcr
27
vulnerability VCID-nsvy-6gvu-wqe1
28
vulnerability VCID-nw5a-bxbt-vbg5
29
vulnerability VCID-pg53-92qn-67f4
30
vulnerability VCID-qm72-ebb5-67cr
31
vulnerability VCID-rdtm-s21h-87az
32
vulnerability VCID-tr6w-mqxr-vueh
33
vulnerability VCID-ud6t-af1d-2yfh
34
vulnerability VCID-vbmp-pabj-r3es
35
vulnerability VCID-vfa1-gfnu-gqgb
36
vulnerability VCID-vtfd-afct-zkc5
37
vulnerability VCID-w2zm-rxx4-xqcy
38
vulnerability VCID-w5kh-x8en-yke7
39
vulnerability VCID-wupv-hcad-4yfs
40
vulnerability VCID-xgmq-ybaw-ckae
41
vulnerability VCID-xju1-g3ft-gyge
42
vulnerability VCID-xzfd-upm6-6fa8
43
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6
1
url pkg:composer/moodle/moodle@4.3.3
purl pkg:composer/moodle/moodle@4.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-396x-a5g1-p3a1
5
vulnerability VCID-3dr4-hds3-ckbr
6
vulnerability VCID-3ee8-byud-7kab
7
vulnerability VCID-3v15-csmz-sfe9
8
vulnerability VCID-43r9-m1xz-5qge
9
vulnerability VCID-575h-xhz7-augs
10
vulnerability VCID-5uk3-pd1j-ykgr
11
vulnerability VCID-5zy2-a2hw-tuba
12
vulnerability VCID-67tn-z6kv-vybp
13
vulnerability VCID-7a6m-m4t2-5ydp
14
vulnerability VCID-7zqn-5pyf-pyg9
15
vulnerability VCID-82cj-8rk2-kygn
16
vulnerability VCID-87yg-v5af-mfd4
17
vulnerability VCID-8evy-5d1w-3fbm
18
vulnerability VCID-8w1a-ft6h-g7bt
19
vulnerability VCID-8ydw-ymjw-4qhd
20
vulnerability VCID-95fs-szzk-c3h5
21
vulnerability VCID-9fr5-4a3g-pbga
22
vulnerability VCID-b53y-qvcd-9bc2
23
vulnerability VCID-b9r4-vfvf-r3cx
24
vulnerability VCID-bhnn-ae5z-53cm
25
vulnerability VCID-bjdy-pxgn-hkcx
26
vulnerability VCID-bn3p-ccnj-3ubw
27
vulnerability VCID-c6hn-kyf7-g3e4
28
vulnerability VCID-c7uy-k6wn-s3f9
29
vulnerability VCID-catf-58r7-87h5
30
vulnerability VCID-cnqj-gehg-xuhk
31
vulnerability VCID-e6pf-zcvz-mqfr
32
vulnerability VCID-eaej-5e2e-yfcr
33
vulnerability VCID-ez7r-y64f-dbbx
34
vulnerability VCID-j897-5zfk-rbhk
35
vulnerability VCID-j9sx-pf51-buhe
36
vulnerability VCID-jejy-353t-x3de
37
vulnerability VCID-jn27-7e3d-1uc6
38
vulnerability VCID-k5ku-5n57-w7e3
39
vulnerability VCID-kymv-5vap-7qf7
40
vulnerability VCID-meau-pbrc-5ffv
41
vulnerability VCID-mm87-9trq-ykca
42
vulnerability VCID-n5hx-mc7q-sua6
43
vulnerability VCID-ndgr-yj2x-tbcr
44
vulnerability VCID-nsvy-6gvu-wqe1
45
vulnerability VCID-nw5a-bxbt-vbg5
46
vulnerability VCID-pg53-92qn-67f4
47
vulnerability VCID-pv24-2amy-4yb9
48
vulnerability VCID-qm72-ebb5-67cr
49
vulnerability VCID-rdtm-s21h-87az
50
vulnerability VCID-s97q-jcmh-ukdh
51
vulnerability VCID-sja2-g5vp-tqev
52
vulnerability VCID-tr6w-mqxr-vueh
53
vulnerability VCID-tvbe-wwjn-jkby
54
vulnerability VCID-uc4c-cw57-tyfp
55
vulnerability VCID-ud6t-af1d-2yfh
56
vulnerability VCID-vbmp-pabj-r3es
57
vulnerability VCID-vfa1-gfnu-gqgb
58
vulnerability VCID-vtfd-afct-zkc5
59
vulnerability VCID-w2zm-rxx4-xqcy
60
vulnerability VCID-w5kh-x8en-yke7
61
vulnerability VCID-w84c-jzp6-zkee
62
vulnerability VCID-wsj3-x2v5-y7gc
63
vulnerability VCID-wupv-hcad-4yfs
64
vulnerability VCID-x3bb-7vq7-aqaa
65
vulnerability VCID-xgmq-ybaw-ckae
66
vulnerability VCID-xju1-g3ft-gyge
67
vulnerability VCID-xkgj-r2v3-k3gt
68
vulnerability VCID-xzfd-upm6-6fa8
69
vulnerability VCID-zcea-b6q9-6fb9
70
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3
aliases CVE-2024-25978, GHSA-487g-3m3v-hjhq
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mtan-pjt6-1bca
43
url VCID-ndgr-yj2x-tbcr
vulnerability_id VCID-ndgr-yj2x-tbcr
summary To address a cache poisoning risk in Moodle, additional validation for local storage was required.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81718
reference_id
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 6.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81718
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43428
reference_id
reference_type
scores
0
value 0.00058
scoring_system epss
scoring_elements 0.18462
published_at 2026-06-11T12:55:00Z
1
value 0.00058
scoring_system epss
scoring_elements 0.18624
published_at 2026-06-12T12:55:00Z
2
value 0.00058
scoring_system epss
scoring_elements 0.1862
published_at 2026-06-14T12:55:00Z
3
value 0.00058
scoring_system epss
scoring_elements 0.18642
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43428
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 6.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43428
reference_id
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 6.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43428
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461196
reference_id discuss.php?d=461196
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 6.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:01Z/
url https://moodle.org/mod/forum/discuss.php?d=461196
5
reference_url https://github.com/advisories/GHSA-2r9m-wg35-rfvc
reference_id GHSA-2r9m-wg35-rfvc
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-2r9m-wg35-rfvc
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304256
reference_id show_bug.cgi?id=2304256
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value 6.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:01Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304256
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43428, GHSA-2r9m-wg35-rfvc
risk_score 3.5
exploitability 0.5
weighted_severity 6.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ndgr-yj2x-tbcr
44
url VCID-nsvy-6gvu-wqe1
vulnerability_id VCID-nsvy-6gvu-wqe1
summary A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits could allow specially crafted formulas to consume excessive server resources. An authenticated user could abuse this behavior to degrade performance or cause service interruption.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-26047
reference_id
reference_type
scores
0
value 0.00094
scoring_system epss
scoring_elements 0.26334
published_at 2026-06-14T12:55:00Z
1
value 0.00094
scoring_system epss
scoring_elements 0.26136
published_at 2026-06-11T12:55:00Z
2
value 0.00094
scoring_system epss
scoring_elements 0.26337
published_at 2026-06-12T12:55:00Z
3
value 0.00094
scoring_system epss
scoring_elements 0.26349
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-26047
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/8683b4a04939332e353cad1be51222930dc40b2c
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/8683b4a04939332e353cad1be51222930dc40b2c
3
reference_url https://moodle.org/mod/forum/discuss.php?d=473316
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=473316
4
reference_url https://access.redhat.com/security/cve/CVE-2026-26047
reference_id CVE-2026-26047
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T19:29:50Z/
url https://access.redhat.com/security/cve/CVE-2026-26047
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-26047
reference_id CVE-2026-26047
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-26047
6
reference_url https://github.com/advisories/GHSA-cg8j-5cr2-568q
reference_id GHSA-cg8j-5cr2-568q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cg8j-5cr2-568q
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2440905
reference_id show_bug.cgi?id=2440905
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T19:29:50Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2440905
fixed_packages
0
url pkg:composer/moodle/moodle@4.5.9
purl pkg:composer/moodle/moodle@4.5.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.9
1
url pkg:composer/moodle/moodle@5.0.5
purl pkg:composer/moodle/moodle@5.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.5
2
url pkg:composer/moodle/moodle@5.1.2
purl pkg:composer/moodle/moodle@5.1.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.2
aliases CVE-2026-26047, GHSA-cg8j-5cr2-568q
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nsvy-6gvu-wqe1
45
url VCID-nw5a-bxbt-vbg5
vulnerability_id VCID-nw5a-bxbt-vbg5
summary The cURL wrapper in Moodle retained the original request headers when following redirects, so HTTP authorization header information could be unintentionally sent in requests to redirect URLs.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-38275
reference_id
reference_type
scores
0
value 0.00759
scoring_system epss
scoring_elements 0.73854
published_at 2026-06-13T12:55:00Z
1
value 0.00759
scoring_system epss
scoring_elements 0.73853
published_at 2026-06-14T12:55:00Z
2
value 0.00759
scoring_system epss
scoring_elements 0.73764
published_at 2026-06-11T12:55:00Z
3
value 0.00759
scoring_system epss
scoring_elements 0.73839
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-38275
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/0df3c5837a592e6663c4d531ff6a1f776bc2f785
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/0df3c5837a592e6663c4d531ff6a1f776bc2f785
3
reference_url https://github.com/moodle/moodle/commit/3e38c84315a7991ce5ef5f241f5e873b5ca24f01
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/3e38c84315a7991ce5ef5f241f5e873b5ca24f01
4
reference_url https://github.com/moodle/moodle/commit/836b2c23a210317d130017d77bb64e3b510869a9
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/836b2c23a210317d130017d77bb64e3b510869a9
5
reference_url https://github.com/moodle/moodle/commit/f7988538b2208c55f2c40ce4f0815901dc88049b
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/f7988538b2208c55f2c40ce4f0815901dc88049b
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-38275
reference_id CVE-2024-38275
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-38275
7
reference_url https://moodle.org/mod/forum/discuss.php?d=459500
reference_id discuss.php?d=459500
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-02T13:36:09Z/
url https://moodle.org/mod/forum/discuss.php?d=459500
8
reference_url https://github.com/advisories/GHSA-p2cj-86v4-7782
reference_id GHSA-p2cj-86v4-7782
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p2cj-86v4-7782
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.8
purl pkg:composer/moodle/moodle@4.2.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-575h-xhz7-augs
4
vulnerability VCID-82cj-8rk2-kygn
5
vulnerability VCID-8w1a-ft6h-g7bt
6
vulnerability VCID-9fr5-4a3g-pbga
7
vulnerability VCID-bjdy-pxgn-hkcx
8
vulnerability VCID-c6hn-kyf7-g3e4
9
vulnerability VCID-catf-58r7-87h5
10
vulnerability VCID-e6pf-zcvz-mqfr
11
vulnerability VCID-j9sx-pf51-buhe
12
vulnerability VCID-k5ku-5n57-w7e3
13
vulnerability VCID-kymv-5vap-7qf7
14
vulnerability VCID-meau-pbrc-5ffv
15
vulnerability VCID-ndgr-yj2x-tbcr
16
vulnerability VCID-nsvy-6gvu-wqe1
17
vulnerability VCID-pg53-92qn-67f4
18
vulnerability VCID-rdtm-s21h-87az
19
vulnerability VCID-tr6w-mqxr-vueh
20
vulnerability VCID-ud6t-af1d-2yfh
21
vulnerability VCID-vbmp-pabj-r3es
22
vulnerability VCID-vfa1-gfnu-gqgb
23
vulnerability VCID-w2zm-rxx4-xqcy
24
vulnerability VCID-xgmq-ybaw-ckae
25
vulnerability VCID-xju1-g3ft-gyge
26
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8
1
url pkg:composer/moodle/moodle@4.3.5
purl pkg:composer/moodle/moodle@4.3.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-9fr5-4a3g-pbga
16
vulnerability VCID-bjdy-pxgn-hkcx
17
vulnerability VCID-bn3p-ccnj-3ubw
18
vulnerability VCID-c6hn-kyf7-g3e4
19
vulnerability VCID-c7uy-k6wn-s3f9
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-e6pf-zcvz-mqfr
22
vulnerability VCID-eaej-5e2e-yfcr
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-k5ku-5n57-w7e3
27
vulnerability VCID-kymv-5vap-7qf7
28
vulnerability VCID-meau-pbrc-5ffv
29
vulnerability VCID-n5hx-mc7q-sua6
30
vulnerability VCID-ndgr-yj2x-tbcr
31
vulnerability VCID-nsvy-6gvu-wqe1
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-ud6t-af1d-2yfh
40
vulnerability VCID-vbmp-pabj-r3es
41
vulnerability VCID-vfa1-gfnu-gqgb
42
vulnerability VCID-w2zm-rxx4-xqcy
43
vulnerability VCID-w84c-jzp6-zkee
44
vulnerability VCID-wsj3-x2v5-y7gc
45
vulnerability VCID-x3bb-7vq7-aqaa
46
vulnerability VCID-xgmq-ybaw-ckae
47
vulnerability VCID-xju1-g3ft-gyge
48
vulnerability VCID-xkgj-r2v3-k3gt
49
vulnerability VCID-zcea-b6q9-6fb9
50
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5
2
url pkg:composer/moodle/moodle@4.4.1
purl pkg:composer/moodle/moodle@4.4.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-2ua4-y1mx-t7f4
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3s11-9e4p-pygy
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-57uf-tz1x-akdt
8
vulnerability VCID-67tn-z6kv-vybp
9
vulnerability VCID-7a6m-m4t2-5ydp
10
vulnerability VCID-7zqn-5pyf-pyg9
11
vulnerability VCID-82cj-8rk2-kygn
12
vulnerability VCID-87yg-v5af-mfd4
13
vulnerability VCID-8w1a-ft6h-g7bt
14
vulnerability VCID-8ydw-ymjw-4qhd
15
vulnerability VCID-95fs-szzk-c3h5
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-bjdy-pxgn-hkcx
18
vulnerability VCID-bn3p-ccnj-3ubw
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-c7uy-k6wn-s3f9
21
vulnerability VCID-catf-58r7-87h5
22
vulnerability VCID-cra3-6x3q-vkap
23
vulnerability VCID-e6pf-zcvz-mqfr
24
vulnerability VCID-eaej-5e2e-yfcr
25
vulnerability VCID-ebae-b6eb-s7fr
26
vulnerability VCID-fsuz-rgpw-8qd4
27
vulnerability VCID-gapa-a9xy-w3be
28
vulnerability VCID-hh6z-2319-83g4
29
vulnerability VCID-j897-5zfk-rbhk
30
vulnerability VCID-j9sx-pf51-buhe
31
vulnerability VCID-jn27-7e3d-1uc6
32
vulnerability VCID-k5ku-5n57-w7e3
33
vulnerability VCID-kymv-5vap-7qf7
34
vulnerability VCID-meau-pbrc-5ffv
35
vulnerability VCID-n5hx-mc7q-sua6
36
vulnerability VCID-ndgr-yj2x-tbcr
37
vulnerability VCID-ndsq-chgj-4kcq
38
vulnerability VCID-nsvy-6gvu-wqe1
39
vulnerability VCID-nw7f-9kxh-dfer
40
vulnerability VCID-p6d8-jya8-vfe2
41
vulnerability VCID-pg53-92qn-67f4
42
vulnerability VCID-pv24-2amy-4yb9
43
vulnerability VCID-q51n-px1r-tkh4
44
vulnerability VCID-rdtm-s21h-87az
45
vulnerability VCID-s97q-jcmh-ukdh
46
vulnerability VCID-sja2-g5vp-tqev
47
vulnerability VCID-tr6w-mqxr-vueh
48
vulnerability VCID-uc4c-cw57-tyfp
49
vulnerability VCID-ud6t-af1d-2yfh
50
vulnerability VCID-vbmp-pabj-r3es
51
vulnerability VCID-vfa1-gfnu-gqgb
52
vulnerability VCID-w2zm-rxx4-xqcy
53
vulnerability VCID-w84c-jzp6-zkee
54
vulnerability VCID-wr3n-bk11-a3bj
55
vulnerability VCID-wsj3-x2v5-y7gc
56
vulnerability VCID-x3bb-7vq7-aqaa
57
vulnerability VCID-x9xg-ujre-3ub9
58
vulnerability VCID-xgmq-ybaw-ckae
59
vulnerability VCID-xju1-g3ft-gyge
60
vulnerability VCID-xkgj-r2v3-k3gt
61
vulnerability VCID-zcea-b6q9-6fb9
62
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1
aliases CVE-2024-38275, GHSA-p2cj-86v4-7782
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nw5a-bxbt-vbg5
46
url VCID-pg53-92qn-67f4
vulnerability_id VCID-pg53-92qn-67f4
summary Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62400
reference_id
reference_type
scores
0
value 0.00059
scoring_system epss
scoring_elements 0.18982
published_at 2026-06-14T12:55:00Z
1
value 0.00059
scoring_system epss
scoring_elements 0.18823
published_at 2026-06-11T12:55:00Z
2
value 0.00059
scoring_system epss
scoring_elements 0.18987
published_at 2026-06-12T12:55:00Z
3
value 0.00059
scoring_system epss
scoring_elements 0.19005
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62400
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/0c70d67059658879a71152ea075c74154a627d05
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/0c70d67059658879a71152ea075c74154a627d05
3
reference_url https://moodle.org/mod/forum/discuss.php?d=470389
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470389
4
reference_url https://access.redhat.com/security/cve/CVE-2025-62400
reference_id CVE-2025-62400
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:48:02Z/
url https://access.redhat.com/security/cve/CVE-2025-62400
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62400
reference_id CVE-2025-62400
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62400
6
reference_url https://github.com/advisories/GHSA-422v-w6c5-vq42
reference_id GHSA-422v-w6c5-vq42
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-422v-w6c5-vq42
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404433
reference_id show_bug.cgi?id=2404433
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:48:02Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404433
fixed_packages
0
url pkg:composer/moodle/moodle@4.4.11
purl pkg:composer/moodle/moodle@4.4.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11
1
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
2
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62400, GHSA-422v-w6c5-vq42
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pg53-92qn-67f4
47
url VCID-qm72-ebb5-67cr
vulnerability_id VCID-qm72-ebb5-67cr
summary ID numbers displayed in the lesson overview report required additional sanitizing to prevent a stored XSS risk.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81062
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81062
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34000
reference_id
reference_type
scores
0
value 0.0028
scoring_system epss
scoring_elements 0.51679
published_at 2026-06-11T12:55:00Z
1
value 0.0028
scoring_system epss
scoring_elements 0.5182
published_at 2026-06-13T12:55:00Z
2
value 0.0028
scoring_system epss
scoring_elements 0.51805
published_at 2026-06-14T12:55:00Z
3
value 0.0028
scoring_system epss
scoring_elements 0.51808
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34000
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/4c966677de06bff56d46d55c419049f78e70f017
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/4c966677de06bff56d46d55c419049f78e70f017
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34000
reference_id CVE-2024-34000
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34000
5
reference_url https://moodle.org/mod/forum/discuss.php?d=458388
reference_id discuss.php?d=458388
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-07T16:24:48Z/
url https://moodle.org/mod/forum/discuss.php?d=458388
6
reference_url https://github.com/advisories/GHSA-8qwh-4vwv-7c5m
reference_id GHSA-8qwh-4vwv-7c5m
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8qwh-4vwv-7c5m
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34000, GHSA-8qwh-4vwv-7c5m
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qm72-ebb5-67cr
48
url VCID-rdtm-s21h-87az
vulnerability_id VCID-rdtm-s21h-87az
summary A flaw was found in moodle. H5P error messages require additional sanitizing to prevent a reflected cross-site scripting (XSS) risk.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43439
reference_id
reference_type
scores
0
value 0.0129
scoring_system epss
scoring_elements 0.80072
published_at 2026-06-11T12:55:00Z
1
value 0.0129
scoring_system epss
scoring_elements 0.80141
published_at 2026-06-14T12:55:00Z
2
value 0.0129
scoring_system epss
scoring_elements 0.8015
published_at 2026-06-13T12:55:00Z
3
value 0.0129
scoring_system epss
scoring_elements 0.80135
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43439
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/c7d9026715a107ee16b9f9b2134ed4e6f667af99
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/c7d9026715a107ee16b9f9b2134ed4e6f667af99
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43439
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43439
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461209
reference_id discuss.php?d=461209
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:50:51Z/
url https://moodle.org/mod/forum/discuss.php?d=461209
5
reference_url https://github.com/advisories/GHSA-hjgc-jxjc-8v9j
reference_id GHSA-hjgc-jxjc-8v9j
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hjgc-jxjc-8v9j
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304268
reference_id show_bug.cgi?id=2304268
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:50:51Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304268
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43439, GHSA-hjgc-jxjc-8v9j
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rdtm-s21h-87az
49
url VCID-s8bc-98ph-nbh5
vulnerability_id VCID-s8bc-98ph-nbh5
summary An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78215
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78215
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-35133
reference_id
reference_type
scores
0
value 0.00391
scoring_system epss
scoring_elements 0.60538
published_at 2026-06-11T12:55:00Z
1
value 0.00391
scoring_system epss
scoring_elements 0.60645
published_at 2026-06-14T12:55:00Z
2
value 0.00391
scoring_system epss
scoring_elements 0.60654
published_at 2026-06-13T12:55:00Z
3
value 0.00391
scoring_system epss
scoring_elements 0.60643
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-35133
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-35133
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-35133
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
reference_id 7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
11
reference_url https://moodle.org/mod/forum/discuss.php?d=447831
reference_id discuss.php?d=447831
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/
url https://moodle.org/mod/forum/discuss.php?d=447831
12
reference_url https://github.com/advisories/GHSA-xxp4-mf4h-6cwm
reference_id GHSA-xxp4-mf4h-6cwm
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xxp4-mf4h-6cwm
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
reference_id I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2214373
reference_id show_bug.cgi?id=2214373
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2214373
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.1
purl pkg:composer/moodle/moodle@4.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-35xa-1mjs-a3au
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-575h-xhz7-augs
8
vulnerability VCID-59gr-d6p5-u7fv
9
vulnerability VCID-5uk3-pd1j-ykgr
10
vulnerability VCID-5zy2-a2hw-tuba
11
vulnerability VCID-67af-4zk5-sfb2
12
vulnerability VCID-6h6h-ny96-x7hu
13
vulnerability VCID-7z7h-w68u-1bc7
14
vulnerability VCID-82cj-8rk2-kygn
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-9szm-emq8-gfdf
18
vulnerability VCID-9u8e-pp4p-nqht
19
vulnerability VCID-b2xd-3ek1-27b9
20
vulnerability VCID-b53y-qvcd-9bc2
21
vulnerability VCID-b9r4-vfvf-r3cx
22
vulnerability VCID-bhnn-ae5z-53cm
23
vulnerability VCID-bjdy-pxgn-hkcx
24
vulnerability VCID-c6hn-kyf7-g3e4
25
vulnerability VCID-catf-58r7-87h5
26
vulnerability VCID-cnqj-gehg-xuhk
27
vulnerability VCID-e6pf-zcvz-mqfr
28
vulnerability VCID-epz3-rnb8-bybr
29
vulnerability VCID-ez7r-y64f-dbbx
30
vulnerability VCID-g8bf-eeaa-hygf
31
vulnerability VCID-gtz8-utju-qfah
32
vulnerability VCID-j9sx-pf51-buhe
33
vulnerability VCID-jejy-353t-x3de
34
vulnerability VCID-k5ku-5n57-w7e3
35
vulnerability VCID-kegp-rnfw-83b4
36
vulnerability VCID-kymv-5vap-7qf7
37
vulnerability VCID-meau-pbrc-5ffv
38
vulnerability VCID-mm87-9trq-ykca
39
vulnerability VCID-mnm9-ngbe-c3ad
40
vulnerability VCID-mtan-pjt6-1bca
41
vulnerability VCID-ndgr-yj2x-tbcr
42
vulnerability VCID-nsvy-6gvu-wqe1
43
vulnerability VCID-nw5a-bxbt-vbg5
44
vulnerability VCID-pg53-92qn-67f4
45
vulnerability VCID-qm72-ebb5-67cr
46
vulnerability VCID-rdtm-s21h-87az
47
vulnerability VCID-t8ha-9bhp-fbbq
48
vulnerability VCID-tr6w-mqxr-vueh
49
vulnerability VCID-u1ke-y4et-6ye8
50
vulnerability VCID-ud6t-af1d-2yfh
51
vulnerability VCID-uuqh-tq51-tbex
52
vulnerability VCID-vbmp-pabj-r3es
53
vulnerability VCID-vfa1-gfnu-gqgb
54
vulnerability VCID-vtfd-afct-zkc5
55
vulnerability VCID-w2zm-rxx4-xqcy
56
vulnerability VCID-w5kh-x8en-yke7
57
vulnerability VCID-wf3q-rpbt-pfg7
58
vulnerability VCID-wupv-hcad-4yfs
59
vulnerability VCID-xgmq-ybaw-ckae
60
vulnerability VCID-xju1-g3ft-gyge
61
vulnerability VCID-xzfd-upm6-6fa8
62
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1
aliases CVE-2023-35133, GHSA-xxp4-mf4h-6cwm
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s8bc-98ph-nbh5
50
url VCID-t8ha-9bhp-fbbq
vulnerability_id VCID-t8ha-9bhp-fbbq
summary H5P metadata automatically populated the author with the user's username, which could be sensitive information.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5545
reference_id
reference_type
scores
0
value 0.00277
scoring_system epss
scoring_elements 0.51589
published_at 2026-06-14T12:55:00Z
1
value 0.00277
scoring_system epss
scoring_elements 0.5146
published_at 2026-06-11T12:55:00Z
2
value 0.00277
scoring_system epss
scoring_elements 0.51591
published_at 2026-06-12T12:55:00Z
3
value 0.00277
scoring_system epss
scoring_elements 0.51603
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5545
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/100ac7c6467a7de2c05713a0a924984ff1593d53
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/100ac7c6467a7de2c05713a0a924984ff1593d53
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5545
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5545
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451586
reference_id discuss.php?d=451586
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:58:29Z/
url https://moodle.org/mod/forum/discuss.php?d=451586
5
reference_url https://github.com/advisories/GHSA-26fg-v32r-h663
reference_id GHSA-26fg-v32r-h663
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-26fg-v32r-h663
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78820
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78820
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:58:29Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78820
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243444
reference_id show_bug.cgi?id=2243444
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
1
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:58:29Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243444
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5545, GHSA-26fg-v32r-h663
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t8ha-9bhp-fbbq
51
url VCID-tr6w-mqxr-vueh
vulnerability_id VCID-tr6w-mqxr-vueh
summary Moodle’s mobile and web service authentication endpoints did not sufficiently restrict repeated password attempts, making them susceptible to brute-force attacks.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-62399
reference_id
reference_type
scores
0
value 0.00088
scoring_system epss
scoring_elements 0.25369
published_at 2026-06-14T12:55:00Z
1
value 0.00088
scoring_system epss
scoring_elements 0.25169
published_at 2026-06-11T12:55:00Z
2
value 0.00088
scoring_system epss
scoring_elements 0.25367
published_at 2026-06-12T12:55:00Z
3
value 0.00088
scoring_system epss
scoring_elements 0.25384
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-62399
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/e4d02567c922c537086de9f59f063ca073552a3a
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/e4d02567c922c537086de9f59f063ca073552a3a
3
reference_url https://moodle.org/mod/forum/discuss.php?d=470388
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=470388
4
reference_url https://access.redhat.com/security/cve/CVE-2025-62399
reference_id CVE-2025-62399
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:51:39Z/
url https://access.redhat.com/security/cve/CVE-2025-62399
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-62399
reference_id CVE-2025-62399
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-62399
6
reference_url https://github.com/advisories/GHSA-m58f-9pvv-8mp2
reference_id GHSA-m58f-9pvv-8mp2
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m58f-9pvv-8mp2
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2404432
reference_id show_bug.cgi?id=2404432
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:51:39Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2404432
fixed_packages
0
url pkg:composer/moodle/moodle@4.4.11
purl pkg:composer/moodle/moodle@4.4.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11
1
url pkg:composer/moodle/moodle@4.5.7
purl pkg:composer/moodle/moodle@4.5.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7
2
url pkg:composer/moodle/moodle@5.0.3
purl pkg:composer/moodle/moodle@5.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-57uf-tz1x-akdt
3
vulnerability VCID-82cj-8rk2-kygn
4
vulnerability VCID-cra3-6x3q-vkap
5
vulnerability VCID-ebae-b6eb-s7fr
6
vulnerability VCID-fsuz-rgpw-8qd4
7
vulnerability VCID-gapa-a9xy-w3be
8
vulnerability VCID-hh6z-2319-83g4
9
vulnerability VCID-nsvy-6gvu-wqe1
10
vulnerability VCID-nw7f-9kxh-dfer
11
vulnerability VCID-x9xg-ujre-3ub9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3
aliases CVE-2025-62399, GHSA-m58f-9pvv-8mp2
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tr6w-mqxr-vueh
52
url VCID-u1ke-y4et-6ye8
vulnerability_id VCID-u1ke-y4et-6ye8
summary Separate Groups mode restrictions were not honoured in the forum summary report, which would display users from other groups.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5551
reference_id
reference_type
scores
0
value 0.00073
scoring_system epss
scoring_elements 0.22379
published_at 2026-06-14T12:55:00Z
1
value 0.00073
scoring_system epss
scoring_elements 0.22195
published_at 2026-06-11T12:55:00Z
2
value 0.00073
scoring_system epss
scoring_elements 0.22387
published_at 2026-06-12T12:55:00Z
3
value 0.00073
scoring_system epss
scoring_elements 0.22401
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5551
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/2bb6c551cf2e7be29857db35388911b8179394b0
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/2bb6c551cf2e7be29857db35388911b8179394b0
3
reference_url https://github.com/moodle/moodle/commit/6de45d2c9f7dd7b24210ab0310c296366a82986a
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/6de45d2c9f7dd7b24210ab0310c296366a82986a
4
reference_url https://github.com/moodle/moodle/commit/b91feb0b2328cdda2561d68b8dfe2a129190bc85
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/b91feb0b2328cdda2561d68b8dfe2a129190bc85
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5551
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5551
6
reference_url https://moodle.org/mod/forum/discuss.php?d=451592
reference_id discuss.php?d=451592
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:23:28Z/
url https://moodle.org/mod/forum/discuss.php?d=451592
7
reference_url https://github.com/advisories/GHSA-jr83-8x65-xcr5
reference_id GHSA-jr83-8x65-xcr5
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jr83-8x65-xcr5
8
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79310
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79310
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:23:28Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79310
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243453
reference_id show_bug.cgi?id=2243453
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:23:28Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243453
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5551, GHSA-jr83-8x65-xcr5
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u1ke-y4et-6ye8
53
url VCID-ud6t-af1d-2yfh
vulnerability_id VCID-ud6t-af1d-2yfh
summary A flaw was found in moodle. When creating an export of site administration presets, some sensitive secrets and keys are not being excluded from the export, which could result in them unintentionally being leaked if the presets are shared with a third party.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79373
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 1.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79373
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43427
reference_id
reference_type
scores
0
value 0.00632
scoring_system epss
scoring_elements 0.70818
published_at 2026-06-11T12:55:00Z
1
value 0.00632
scoring_system epss
scoring_elements 0.70908
published_at 2026-06-12T12:55:00Z
2
value 0.00632
scoring_system epss
scoring_elements 0.70918
published_at 2026-06-14T12:55:00Z
3
value 0.00632
scoring_system epss
scoring_elements 0.70921
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43427
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 1.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43427
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 1.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43427
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461195
reference_id discuss.php?d=461195
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 1.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:02:44Z/
url https://moodle.org/mod/forum/discuss.php?d=461195
5
reference_url https://github.com/advisories/GHSA-vpq5-56jj-vf2m
reference_id GHSA-vpq5-56jj-vf2m
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vpq5-56jj-vf2m
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304255
reference_id show_bug.cgi?id=2304255
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 1.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:02:44Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304255
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43427, GHSA-vpq5-56jj-vf2m
risk_score 1.6
exploitability 0.5
weighted_severity 3.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ud6t-af1d-2yfh
54
url VCID-uuqh-tq51-tbex
vulnerability_id VCID-uuqh-tq51-tbex
summary A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5539
reference_id
reference_type
scores
0
value 0.022
scoring_system epss
scoring_elements 0.84838
published_at 2026-06-14T12:55:00Z
1
value 0.022
scoring_system epss
scoring_elements 0.84785
published_at 2026-06-11T12:55:00Z
2
value 0.022
scoring_system epss
scoring_elements 0.84837
published_at 2026-06-12T12:55:00Z
3
value 0.022
scoring_system epss
scoring_elements 0.84846
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5539
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/ba974a4add981743b5a37c5bcc4714c62f6052ce
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/ba974a4add981743b5a37c5bcc4714c62f6052ce
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5539
reference_id
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5539
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451580
reference_id discuss.php?d=451580
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-03T18:23:49Z/
url https://moodle.org/mod/forum/discuss.php?d=451580
5
reference_url https://github.com/advisories/GHSA-3xxm-3g3c-w579
reference_id GHSA-3xxm-3g3c-w579
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3xxm-3g3c-w579
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79408
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79408
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-03T18:23:49Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79408
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243352
reference_id show_bug.cgi?id=2243352
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-03T18:23:49Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243352
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5539, GHSA-3xxm-3g3c-w579
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uuqh-tq51-tbex
55
url VCID-vbmp-pabj-r3es
vulnerability_id VCID-vbmp-pabj-r3es
summary A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned by the report.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43438
reference_id
reference_type
scores
0
value 0.00287
scoring_system epss
scoring_elements 0.52511
published_at 2026-06-11T12:55:00Z
1
value 0.00287
scoring_system epss
scoring_elements 0.52632
published_at 2026-06-14T12:55:00Z
2
value 0.00287
scoring_system epss
scoring_elements 0.5265
published_at 2026-06-13T12:55:00Z
3
value 0.00287
scoring_system epss
scoring_elements 0.52638
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43438
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43438
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43438
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461208
reference_id discuss.php?d=461208
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:31Z/
url https://moodle.org/mod/forum/discuss.php?d=461208
4
reference_url https://github.com/advisories/GHSA-p9cx-f595-h79h
reference_id GHSA-p9cx-f595-h79h
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p9cx-f595-h79h
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304267
reference_id show_bug.cgi?id=2304267
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:31Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304267
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43438, GHSA-p9cx-f595-h79h
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vbmp-pabj-r3es
56
url VCID-vfa1-gfnu-gqgb
vulnerability_id VCID-vfa1-gfnu-gqgb
summary A flaw was found in moodle. Insufficient capability checks make it possible for users with access to restore glossaries in courses to restore them into the global site glossary.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64984
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64984
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43435
reference_id
reference_type
scores
0
value 0.00529
scoring_system epss
scoring_elements 0.67612
published_at 2026-06-11T12:55:00Z
1
value 0.00529
scoring_system epss
scoring_elements 0.67701
published_at 2026-06-12T12:55:00Z
2
value 0.00529
scoring_system epss
scoring_elements 0.67711
published_at 2026-06-14T12:55:00Z
3
value 0.00529
scoring_system epss
scoring_elements 0.67714
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43435
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43435
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43435
4
reference_url https://moodle.org/mod/forum/discuss.php?d=461205
reference_id discuss.php?d=461205
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:57:03Z/
url https://moodle.org/mod/forum/discuss.php?d=461205
5
reference_url https://github.com/advisories/GHSA-4gq2-x5w4-7hp8
reference_id GHSA-4gq2-x5w4-7hp8
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4gq2-x5w4-7hp8
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304263
reference_id show_bug.cgi?id=2304263
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:57:03Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304263
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43435, GHSA-4gq2-x5w4-7hp8
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vfa1-gfnu-gqgb
57
url VCID-vtfd-afct-zkc5
vulnerability_id VCID-vtfd-afct-zkc5
summary The site log report required additional encoding of event descriptions to ensure any HTML in the content is displayed in plaintext instead of being rendered.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80585
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80585
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34006
reference_id
reference_type
scores
0
value 0.00424
scoring_system epss
scoring_elements 0.62611
published_at 2026-06-11T12:55:00Z
1
value 0.00424
scoring_system epss
scoring_elements 0.62724
published_at 2026-06-13T12:55:00Z
2
value 0.00424
scoring_system epss
scoring_elements 0.62719
published_at 2026-06-14T12:55:00Z
3
value 0.00424
scoring_system epss
scoring_elements 0.62712
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34006
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/cd85e090f3feb06e6eff65d1499a67353d82d3cb
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/cd85e090f3feb06e6eff65d1499a67353d82d3cb
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34006
reference_id CVE-2024-34006
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34006
5
reference_url https://moodle.org/mod/forum/discuss.php?d=458395
reference_id discuss.php?d=458395
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T15:10:13Z/
url https://moodle.org/mod/forum/discuss.php?d=458395
6
reference_url https://github.com/advisories/GHSA-vvh5-7v3m-j3mj
reference_id GHSA-vvh5-7v3m-j3mj
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vvh5-7v3m-j3mj
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34006, GHSA-vvh5-7v3m-j3mj
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vtfd-afct-zkc5
58
url VCID-w2zm-rxx4-xqcy
vulnerability_id VCID-w2zm-rxx4-xqcy
summary A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43431
reference_id
reference_type
scores
0
value 0.00308
scoring_system epss
scoring_elements 0.54421
published_at 2026-06-11T12:55:00Z
1
value 0.00308
scoring_system epss
scoring_elements 0.54546
published_at 2026-06-14T12:55:00Z
2
value 0.00308
scoring_system epss
scoring_elements 0.54562
published_at 2026-06-13T12:55:00Z
3
value 0.00308
scoring_system epss
scoring_elements 0.54547
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43431
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43431
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43431
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461199
reference_id discuss.php?d=461199
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:53Z/
url https://moodle.org/mod/forum/discuss.php?d=461199
4
reference_url https://github.com/advisories/GHSA-wwjf-gwrv-wh45
reference_id GHSA-wwjf-gwrv-wh45
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wwjf-gwrv-wh45
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304259
reference_id show_bug.cgi?id=2304259
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:53Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304259
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43431, GHSA-wwjf-gwrv-wh45
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w2zm-rxx4-xqcy
59
url VCID-w5kh-x8en-yke7
vulnerability_id VCID-w5kh-x8en-yke7
summary Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF risk.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81059
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81059
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34008
reference_id
reference_type
scores
0
value 0.00361
scoring_system epss
scoring_elements 0.58734
published_at 2026-06-14T12:55:00Z
1
value 0.00361
scoring_system epss
scoring_elements 0.58619
published_at 2026-06-11T12:55:00Z
2
value 0.00361
scoring_system epss
scoring_elements 0.58746
published_at 2026-06-13T12:55:00Z
3
value 0.00361
scoring_system epss
scoring_elements 0.58731
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34008
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/498a766263743ee649f6874e440a94517a077e2e
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/498a766263743ee649f6874e440a94517a077e2e
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34008
reference_id CVE-2024-34008
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34008
5
reference_url https://moodle.org/mod/forum/discuss.php?d=458397
reference_id discuss.php?d=458397
reference_type
scores
0
value 3.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-05T19:22:27Z/
url https://moodle.org/mod/forum/discuss.php?d=458397
6
reference_url https://github.com/advisories/GHSA-68x5-4jg5-gjgg
reference_id GHSA-68x5-4jg5-gjgg
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-68x5-4jg5-gjgg
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34008, GHSA-68x5-4jg5-gjgg
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w5kh-x8en-yke7
60
url VCID-wf3q-rpbt-pfg7
vulnerability_id VCID-wf3q-rpbt-pfg7
summary The CSV grade import method contained an XSS risk for users importing the spreadsheet, if it contained unsafe content.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-5541
reference_id
reference_type
scores
0
value 0.00139
scoring_system epss
scoring_elements 0.33964
published_at 2026-06-14T12:55:00Z
1
value 0.00139
scoring_system epss
scoring_elements 0.33784
published_at 2026-06-11T12:55:00Z
2
value 0.00139
scoring_system epss
scoring_elements 0.33963
published_at 2026-06-12T12:55:00Z
3
value 0.00139
scoring_system epss
scoring_elements 0.33986
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-5541
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/f5f6ce375e37da902afb043c6b506129fc433233
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/f5f6ce375e37da902afb043c6b506129fc433233
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-5541
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-5541
4
reference_url https://moodle.org/mod/forum/discuss.php?d=451582
reference_id discuss.php?d=451582
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T20:18:35Z/
url https://moodle.org/mod/forum/discuss.php?d=451582
5
reference_url https://github.com/advisories/GHSA-28gc-4qq5-8q26
reference_id GHSA-28gc-4qq5-8q26
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-28gc-4qq5-8q26
6
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79426
reference_id gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79426
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T20:18:35Z/
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79426
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2243437
reference_id show_bug.cgi?id=2243437
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T20:18:35Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2243437
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.3
purl pkg:composer/moodle/moodle@4.2.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-364m-hhsz-dfcs
3
vulnerability VCID-3dr4-hds3-ckbr
4
vulnerability VCID-3ee8-byud-7kab
5
vulnerability VCID-3v15-csmz-sfe9
6
vulnerability VCID-575h-xhz7-augs
7
vulnerability VCID-5uk3-pd1j-ykgr
8
vulnerability VCID-5zy2-a2hw-tuba
9
vulnerability VCID-7z7h-w68u-1bc7
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-8w1a-ft6h-g7bt
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-9szm-emq8-gfdf
14
vulnerability VCID-b2xd-3ek1-27b9
15
vulnerability VCID-b53y-qvcd-9bc2
16
vulnerability VCID-b9r4-vfvf-r3cx
17
vulnerability VCID-bhnn-ae5z-53cm
18
vulnerability VCID-bjdy-pxgn-hkcx
19
vulnerability VCID-c6hn-kyf7-g3e4
20
vulnerability VCID-catf-58r7-87h5
21
vulnerability VCID-cnqj-gehg-xuhk
22
vulnerability VCID-e6pf-zcvz-mqfr
23
vulnerability VCID-epz3-rnb8-bybr
24
vulnerability VCID-ez7r-y64f-dbbx
25
vulnerability VCID-j9sx-pf51-buhe
26
vulnerability VCID-jejy-353t-x3de
27
vulnerability VCID-k5ku-5n57-w7e3
28
vulnerability VCID-kymv-5vap-7qf7
29
vulnerability VCID-meau-pbrc-5ffv
30
vulnerability VCID-mm87-9trq-ykca
31
vulnerability VCID-mnm9-ngbe-c3ad
32
vulnerability VCID-mtan-pjt6-1bca
33
vulnerability VCID-ndgr-yj2x-tbcr
34
vulnerability VCID-nsvy-6gvu-wqe1
35
vulnerability VCID-nw5a-bxbt-vbg5
36
vulnerability VCID-pg53-92qn-67f4
37
vulnerability VCID-qm72-ebb5-67cr
38
vulnerability VCID-rdtm-s21h-87az
39
vulnerability VCID-tr6w-mqxr-vueh
40
vulnerability VCID-ud6t-af1d-2yfh
41
vulnerability VCID-vbmp-pabj-r3es
42
vulnerability VCID-vfa1-gfnu-gqgb
43
vulnerability VCID-vtfd-afct-zkc5
44
vulnerability VCID-w2zm-rxx4-xqcy
45
vulnerability VCID-w5kh-x8en-yke7
46
vulnerability VCID-wupv-hcad-4yfs
47
vulnerability VCID-xgmq-ybaw-ckae
48
vulnerability VCID-xju1-g3ft-gyge
49
vulnerability VCID-xzfd-upm6-6fa8
50
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3
1
url pkg:composer/moodle/moodle@4.3.0-rc2
purl pkg:composer/moodle/moodle@4.3.0-rc2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-43r9-m1xz-5qge
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-67tn-z6kv-vybp
8
vulnerability VCID-7a6m-m4t2-5ydp
9
vulnerability VCID-7zqn-5pyf-pyg9
10
vulnerability VCID-82cj-8rk2-kygn
11
vulnerability VCID-87yg-v5af-mfd4
12
vulnerability VCID-8w1a-ft6h-g7bt
13
vulnerability VCID-8ydw-ymjw-4qhd
14
vulnerability VCID-95fs-szzk-c3h5
15
vulnerability VCID-bn3p-ccnj-3ubw
16
vulnerability VCID-c6hn-kyf7-g3e4
17
vulnerability VCID-c7uy-k6wn-s3f9
18
vulnerability VCID-catf-58r7-87h5
19
vulnerability VCID-cnqj-gehg-xuhk
20
vulnerability VCID-e6pf-zcvz-mqfr
21
vulnerability VCID-eaej-5e2e-yfcr
22
vulnerability VCID-j897-5zfk-rbhk
23
vulnerability VCID-jn27-7e3d-1uc6
24
vulnerability VCID-k5ku-5n57-w7e3
25
vulnerability VCID-kymv-5vap-7qf7
26
vulnerability VCID-meau-pbrc-5ffv
27
vulnerability VCID-mm87-9trq-ykca
28
vulnerability VCID-n5hx-mc7q-sua6
29
vulnerability VCID-ndgr-yj2x-tbcr
30
vulnerability VCID-nsvy-6gvu-wqe1
31
vulnerability VCID-nw5a-bxbt-vbg5
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-rdtm-s21h-87az
35
vulnerability VCID-s97q-jcmh-ukdh
36
vulnerability VCID-sja2-g5vp-tqev
37
vulnerability VCID-tr6w-mqxr-vueh
38
vulnerability VCID-uc4c-cw57-tyfp
39
vulnerability VCID-vbmp-pabj-r3es
40
vulnerability VCID-w2zm-rxx4-xqcy
41
vulnerability VCID-w84c-jzp6-zkee
42
vulnerability VCID-wsj3-x2v5-y7gc
43
vulnerability VCID-x3bb-7vq7-aqaa
44
vulnerability VCID-xgmq-ybaw-ckae
45
vulnerability VCID-xkgj-r2v3-k3gt
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2
aliases CVE-2023-5541, GHSA-28gc-4qq5-8q26
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wf3q-rpbt-pfg7
61
url VCID-wupv-hcad-4yfs
vulnerability_id VCID-wupv-hcad-4yfs
summary Actions in the admin preset tool did not include the necessary token to prevent a CSRF risk.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34001
reference_id
reference_type
scores
0
value 0.00323
scoring_system epss
scoring_elements 0.55721
published_at 2026-06-11T12:55:00Z
1
value 0.00323
scoring_system epss
scoring_elements 0.55843
published_at 2026-06-14T12:55:00Z
2
value 0.00323
scoring_system epss
scoring_elements 0.55856
published_at 2026-06-13T12:55:00Z
3
value 0.00323
scoring_system epss
scoring_elements 0.5584
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34001
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/03e93da556201291e4a345d353a06d08d5d04dd6
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/03e93da556201291e4a345d353a06d08d5d04dd6
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34001
reference_id CVE-2024-34001
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34001
4
reference_url https://moodle.org/mod/forum/discuss.php?d=458389
reference_id discuss.php?d=458389
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-01T13:12:28Z/
url https://moodle.org/mod/forum/discuss.php?d=458389
5
reference_url https://github.com/advisories/GHSA-gq9f-8rj4-w7jc
reference_id GHSA-gq9f-8rj4-w7jc
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-gq9f-8rj4-w7jc
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34001, GHSA-gq9f-8rj4-w7jc
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wupv-hcad-4yfs
62
url VCID-xgmq-ybaw-ckae
vulnerability_id VCID-xgmq-ybaw-ckae
summary A flaw was found in moodle. A local file may include risks when restoring block backups.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-43440
reference_id
reference_type
scores
0
value 0.00334
scoring_system epss
scoring_elements 0.56557
published_at 2026-06-11T12:55:00Z
1
value 0.00334
scoring_system epss
scoring_elements 0.5668
published_at 2026-06-14T12:55:00Z
2
value 0.00334
scoring_system epss
scoring_elements 0.56691
published_at 2026-06-13T12:55:00Z
3
value 0.00334
scoring_system epss
scoring_elements 0.56676
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-43440
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-43440
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-43440
3
reference_url https://moodle.org/mod/forum/discuss.php?d=461210
reference_id discuss.php?d=461210
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:23:21Z/
url https://moodle.org/mod/forum/discuss.php?d=461210
4
reference_url https://github.com/advisories/GHSA-qrqv-26gf-xgwh
reference_id GHSA-qrqv-26gf-xgwh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qrqv-26gf-xgwh
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2304269
reference_id show_bug.cgi?id=2304269
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value 6.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:23:21Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2304269
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.9
purl pkg:composer/moodle/moodle@4.2.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-82cj-8rk2-kygn
3
vulnerability VCID-8w1a-ft6h-g7bt
4
vulnerability VCID-9fr5-4a3g-pbga
5
vulnerability VCID-c6hn-kyf7-g3e4
6
vulnerability VCID-j9sx-pf51-buhe
7
vulnerability VCID-kymv-5vap-7qf7
8
vulnerability VCID-nsvy-6gvu-wqe1
9
vulnerability VCID-pg53-92qn-67f4
10
vulnerability VCID-tr6w-mqxr-vueh
11
vulnerability VCID-xju1-g3ft-gyge
12
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9
1
url pkg:composer/moodle/moodle@4.3.6
purl pkg:composer/moodle/moodle@4.3.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8w1a-ft6h-g7bt
10
vulnerability VCID-8ydw-ymjw-4qhd
11
vulnerability VCID-95fs-szzk-c3h5
12
vulnerability VCID-9fr5-4a3g-pbga
13
vulnerability VCID-bn3p-ccnj-3ubw
14
vulnerability VCID-c6hn-kyf7-g3e4
15
vulnerability VCID-c7uy-k6wn-s3f9
16
vulnerability VCID-eaej-5e2e-yfcr
17
vulnerability VCID-j897-5zfk-rbhk
18
vulnerability VCID-j9sx-pf51-buhe
19
vulnerability VCID-jn27-7e3d-1uc6
20
vulnerability VCID-kymv-5vap-7qf7
21
vulnerability VCID-n5hx-mc7q-sua6
22
vulnerability VCID-nsvy-6gvu-wqe1
23
vulnerability VCID-pg53-92qn-67f4
24
vulnerability VCID-pv24-2amy-4yb9
25
vulnerability VCID-s97q-jcmh-ukdh
26
vulnerability VCID-sja2-g5vp-tqev
27
vulnerability VCID-tr6w-mqxr-vueh
28
vulnerability VCID-uc4c-cw57-tyfp
29
vulnerability VCID-w84c-jzp6-zkee
30
vulnerability VCID-wsj3-x2v5-y7gc
31
vulnerability VCID-x3bb-7vq7-aqaa
32
vulnerability VCID-xju1-g3ft-gyge
33
vulnerability VCID-xkgj-r2v3-k3gt
34
vulnerability VCID-zcea-b6q9-6fb9
35
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6
2
url pkg:composer/moodle/moodle@4.4.2
purl pkg:composer/moodle/moodle@4.4.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-364m-hhsz-dfcs
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-3s11-9e4p-pygy
3
vulnerability VCID-43r9-m1xz-5qge
4
vulnerability VCID-57uf-tz1x-akdt
5
vulnerability VCID-67tn-z6kv-vybp
6
vulnerability VCID-7a6m-m4t2-5ydp
7
vulnerability VCID-7zqn-5pyf-pyg9
8
vulnerability VCID-82cj-8rk2-kygn
9
vulnerability VCID-87yg-v5af-mfd4
10
vulnerability VCID-8w1a-ft6h-g7bt
11
vulnerability VCID-8ydw-ymjw-4qhd
12
vulnerability VCID-95fs-szzk-c3h5
13
vulnerability VCID-9fr5-4a3g-pbga
14
vulnerability VCID-bn3p-ccnj-3ubw
15
vulnerability VCID-c6hn-kyf7-g3e4
16
vulnerability VCID-c7uy-k6wn-s3f9
17
vulnerability VCID-cra3-6x3q-vkap
18
vulnerability VCID-eaej-5e2e-yfcr
19
vulnerability VCID-ebae-b6eb-s7fr
20
vulnerability VCID-fsuz-rgpw-8qd4
21
vulnerability VCID-gapa-a9xy-w3be
22
vulnerability VCID-hh6z-2319-83g4
23
vulnerability VCID-j897-5zfk-rbhk
24
vulnerability VCID-j9sx-pf51-buhe
25
vulnerability VCID-jn27-7e3d-1uc6
26
vulnerability VCID-kymv-5vap-7qf7
27
vulnerability VCID-n5hx-mc7q-sua6
28
vulnerability VCID-ndsq-chgj-4kcq
29
vulnerability VCID-nsvy-6gvu-wqe1
30
vulnerability VCID-nw7f-9kxh-dfer
31
vulnerability VCID-p6d8-jya8-vfe2
32
vulnerability VCID-pg53-92qn-67f4
33
vulnerability VCID-pv24-2amy-4yb9
34
vulnerability VCID-s97q-jcmh-ukdh
35
vulnerability VCID-sja2-g5vp-tqev
36
vulnerability VCID-tr6w-mqxr-vueh
37
vulnerability VCID-uc4c-cw57-tyfp
38
vulnerability VCID-w84c-jzp6-zkee
39
vulnerability VCID-wr3n-bk11-a3bj
40
vulnerability VCID-wsj3-x2v5-y7gc
41
vulnerability VCID-x3bb-7vq7-aqaa
42
vulnerability VCID-x9xg-ujre-3ub9
43
vulnerability VCID-xju1-g3ft-gyge
44
vulnerability VCID-xkgj-r2v3-k3gt
45
vulnerability VCID-zcea-b6q9-6fb9
46
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2
aliases CVE-2024-43440, GHSA-qrqv-26gf-xgwh
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xgmq-ybaw-ckae
63
url VCID-xju1-g3ft-gyge
vulnerability_id VCID-xju1-g3ft-gyge
summary A vulnerability was found in Moodle. Additional checks are required to ensure users can only access the schedule of a report if they have permission to edit that report.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-48901
reference_id
reference_type
scores
0
value 0.00229
scoring_system epss
scoring_elements 0.46016
published_at 2026-06-12T12:55:00Z
1
value 0.00229
scoring_system epss
scoring_elements 0.46009
published_at 2026-06-14T12:55:00Z
2
value 0.00229
scoring_system epss
scoring_elements 0.45871
published_at 2026-06-11T12:55:00Z
3
value 0.00229
scoring_system epss
scoring_elements 0.46023
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-48901
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-48901
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-48901
3
reference_url https://github.com/advisories/GHSA-mg54-p2wj-5ph7
reference_id GHSA-mg54-p2wj-5ph7
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-mg54-p2wj-5ph7
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2318817
reference_id show_bug.cgi?id=2318817
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-18T14:55:25Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2318817
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.11
purl pkg:composer/moodle/moodle@4.2.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-82cj-8rk2-kygn
2
vulnerability VCID-kymv-5vap-7qf7
3
vulnerability VCID-nsvy-6gvu-wqe1
4
vulnerability VCID-pg53-92qn-67f4
5
vulnerability VCID-tr6w-mqxr-vueh
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11
1
url pkg:composer/moodle/moodle@4.3.8
purl pkg:composer/moodle/moodle@4.3.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-67tn-z6kv-vybp
4
vulnerability VCID-7a6m-m4t2-5ydp
5
vulnerability VCID-7zqn-5pyf-pyg9
6
vulnerability VCID-82cj-8rk2-kygn
7
vulnerability VCID-87yg-v5af-mfd4
8
vulnerability VCID-8ydw-ymjw-4qhd
9
vulnerability VCID-95fs-szzk-c3h5
10
vulnerability VCID-bn3p-ccnj-3ubw
11
vulnerability VCID-c7uy-k6wn-s3f9
12
vulnerability VCID-eaej-5e2e-yfcr
13
vulnerability VCID-j897-5zfk-rbhk
14
vulnerability VCID-jn27-7e3d-1uc6
15
vulnerability VCID-kymv-5vap-7qf7
16
vulnerability VCID-n5hx-mc7q-sua6
17
vulnerability VCID-nsvy-6gvu-wqe1
18
vulnerability VCID-pg53-92qn-67f4
19
vulnerability VCID-pv24-2amy-4yb9
20
vulnerability VCID-s97q-jcmh-ukdh
21
vulnerability VCID-sja2-g5vp-tqev
22
vulnerability VCID-tr6w-mqxr-vueh
23
vulnerability VCID-uc4c-cw57-tyfp
24
vulnerability VCID-w84c-jzp6-zkee
25
vulnerability VCID-wsj3-x2v5-y7gc
26
vulnerability VCID-x3bb-7vq7-aqaa
27
vulnerability VCID-xkgj-r2v3-k3gt
28
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8
2
url pkg:composer/moodle/moodle@4.4.4
purl pkg:composer/moodle/moodle@4.4.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-57uf-tz1x-akdt
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8ydw-ymjw-4qhd
10
vulnerability VCID-95fs-szzk-c3h5
11
vulnerability VCID-bn3p-ccnj-3ubw
12
vulnerability VCID-c7uy-k6wn-s3f9
13
vulnerability VCID-cra3-6x3q-vkap
14
vulnerability VCID-eaej-5e2e-yfcr
15
vulnerability VCID-ebae-b6eb-s7fr
16
vulnerability VCID-fsuz-rgpw-8qd4
17
vulnerability VCID-gapa-a9xy-w3be
18
vulnerability VCID-hh6z-2319-83g4
19
vulnerability VCID-j897-5zfk-rbhk
20
vulnerability VCID-jn27-7e3d-1uc6
21
vulnerability VCID-kymv-5vap-7qf7
22
vulnerability VCID-n5hx-mc7q-sua6
23
vulnerability VCID-nsvy-6gvu-wqe1
24
vulnerability VCID-nw7f-9kxh-dfer
25
vulnerability VCID-pg53-92qn-67f4
26
vulnerability VCID-pv24-2amy-4yb9
27
vulnerability VCID-s97q-jcmh-ukdh
28
vulnerability VCID-sja2-g5vp-tqev
29
vulnerability VCID-tr6w-mqxr-vueh
30
vulnerability VCID-uc4c-cw57-tyfp
31
vulnerability VCID-w84c-jzp6-zkee
32
vulnerability VCID-wr3n-bk11-a3bj
33
vulnerability VCID-wsj3-x2v5-y7gc
34
vulnerability VCID-x3bb-7vq7-aqaa
35
vulnerability VCID-x9xg-ujre-3ub9
36
vulnerability VCID-xkgj-r2v3-k3gt
37
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4
aliases CVE-2024-48901, GHSA-mg54-p2wj-5ph7
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xju1-g3ft-gyge
64
url VCID-xm3s-de89-d3dr
vulnerability_id VCID-xm3s-de89-d3dr
summary Content on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to 3.11.14.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-76683
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-76683
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-35131
reference_id
reference_type
scores
0
value 0.00892
scoring_system epss
scoring_elements 0.76016
published_at 2026-06-11T12:55:00Z
1
value 0.00892
scoring_system epss
scoring_elements 0.76095
published_at 2026-06-14T12:55:00Z
2
value 0.00892
scoring_system epss
scoring_elements 0.76101
published_at 2026-06-13T12:55:00Z
3
value 0.00892
scoring_system epss
scoring_elements 0.76088
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-35131
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-35131
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-35131
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
reference_id 7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/
11
reference_url https://moodle.org/mod/forum/discuss.php?d=447829
reference_id discuss.php?d=447829
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/
url https://moodle.org/mod/forum/discuss.php?d=447829
12
reference_url https://github.com/advisories/GHSA-fwfj-8p36-rc64
reference_id GHSA-fwfj-8p36-rc64
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fwfj-8p36-rc64
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
reference_id I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2214369
reference_id show_bug.cgi?id=2214369
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2214369
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.1
purl pkg:composer/moodle/moodle@4.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-352q-17as-77gz
2
vulnerability VCID-35xa-1mjs-a3au
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-575h-xhz7-augs
8
vulnerability VCID-59gr-d6p5-u7fv
9
vulnerability VCID-5uk3-pd1j-ykgr
10
vulnerability VCID-5zy2-a2hw-tuba
11
vulnerability VCID-67af-4zk5-sfb2
12
vulnerability VCID-6h6h-ny96-x7hu
13
vulnerability VCID-7z7h-w68u-1bc7
14
vulnerability VCID-82cj-8rk2-kygn
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-9fr5-4a3g-pbga
17
vulnerability VCID-9szm-emq8-gfdf
18
vulnerability VCID-9u8e-pp4p-nqht
19
vulnerability VCID-b2xd-3ek1-27b9
20
vulnerability VCID-b53y-qvcd-9bc2
21
vulnerability VCID-b9r4-vfvf-r3cx
22
vulnerability VCID-bhnn-ae5z-53cm
23
vulnerability VCID-bjdy-pxgn-hkcx
24
vulnerability VCID-c6hn-kyf7-g3e4
25
vulnerability VCID-catf-58r7-87h5
26
vulnerability VCID-cnqj-gehg-xuhk
27
vulnerability VCID-e6pf-zcvz-mqfr
28
vulnerability VCID-epz3-rnb8-bybr
29
vulnerability VCID-ez7r-y64f-dbbx
30
vulnerability VCID-g8bf-eeaa-hygf
31
vulnerability VCID-gtz8-utju-qfah
32
vulnerability VCID-j9sx-pf51-buhe
33
vulnerability VCID-jejy-353t-x3de
34
vulnerability VCID-k5ku-5n57-w7e3
35
vulnerability VCID-kegp-rnfw-83b4
36
vulnerability VCID-kymv-5vap-7qf7
37
vulnerability VCID-meau-pbrc-5ffv
38
vulnerability VCID-mm87-9trq-ykca
39
vulnerability VCID-mnm9-ngbe-c3ad
40
vulnerability VCID-mtan-pjt6-1bca
41
vulnerability VCID-ndgr-yj2x-tbcr
42
vulnerability VCID-nsvy-6gvu-wqe1
43
vulnerability VCID-nw5a-bxbt-vbg5
44
vulnerability VCID-pg53-92qn-67f4
45
vulnerability VCID-qm72-ebb5-67cr
46
vulnerability VCID-rdtm-s21h-87az
47
vulnerability VCID-t8ha-9bhp-fbbq
48
vulnerability VCID-tr6w-mqxr-vueh
49
vulnerability VCID-u1ke-y4et-6ye8
50
vulnerability VCID-ud6t-af1d-2yfh
51
vulnerability VCID-uuqh-tq51-tbex
52
vulnerability VCID-vbmp-pabj-r3es
53
vulnerability VCID-vfa1-gfnu-gqgb
54
vulnerability VCID-vtfd-afct-zkc5
55
vulnerability VCID-w2zm-rxx4-xqcy
56
vulnerability VCID-w5kh-x8en-yke7
57
vulnerability VCID-wf3q-rpbt-pfg7
58
vulnerability VCID-wupv-hcad-4yfs
59
vulnerability VCID-xgmq-ybaw-ckae
60
vulnerability VCID-xju1-g3ft-gyge
61
vulnerability VCID-xzfd-upm6-6fa8
62
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1
aliases CVE-2023-35131, GHSA-fwfj-8p36-rc64
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xm3s-de89-d3dr
65
url VCID-xzfd-upm6-6fa8
vulnerability_id VCID-xzfd-upm6-6fa8
summary In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include.
references
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81135
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81135
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-34002
reference_id
reference_type
scores
0
value 0.00445
scoring_system epss
scoring_elements 0.63955
published_at 2026-06-13T12:55:00Z
1
value 0.00445
scoring_system epss
scoring_elements 0.63838
published_at 2026-06-11T12:55:00Z
2
value 0.00445
scoring_system epss
scoring_elements 0.63953
published_at 2026-06-14T12:55:00Z
3
value 0.00445
scoring_system epss
scoring_elements 0.6394
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-34002
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-34002
reference_id CVE-2024-34002
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-34002
4
reference_url https://moodle.org/mod/forum/discuss.php?d=458390
reference_id discuss.php?d=458390
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value 7.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:56:11Z/
url https://moodle.org/mod/forum/discuss.php?d=458390
5
reference_url https://github.com/advisories/GHSA-mm9p-xwfm-3fqf
reference_id GHSA-mm9p-xwfm-3fqf
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-mm9p-xwfm-3fqf
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.7
purl pkg:composer/moodle/moodle@4.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24a4-k6sm-zfey
1
vulnerability VCID-364m-hhsz-dfcs
2
vulnerability VCID-3dr4-hds3-ckbr
3
vulnerability VCID-3ee8-byud-7kab
4
vulnerability VCID-3v15-csmz-sfe9
5
vulnerability VCID-575h-xhz7-augs
6
vulnerability VCID-5zy2-a2hw-tuba
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-8w1a-ft6h-g7bt
9
vulnerability VCID-9fr5-4a3g-pbga
10
vulnerability VCID-bjdy-pxgn-hkcx
11
vulnerability VCID-c6hn-kyf7-g3e4
12
vulnerability VCID-catf-58r7-87h5
13
vulnerability VCID-cnqj-gehg-xuhk
14
vulnerability VCID-e6pf-zcvz-mqfr
15
vulnerability VCID-j9sx-pf51-buhe
16
vulnerability VCID-k5ku-5n57-w7e3
17
vulnerability VCID-kymv-5vap-7qf7
18
vulnerability VCID-meau-pbrc-5ffv
19
vulnerability VCID-ndgr-yj2x-tbcr
20
vulnerability VCID-nsvy-6gvu-wqe1
21
vulnerability VCID-nw5a-bxbt-vbg5
22
vulnerability VCID-pg53-92qn-67f4
23
vulnerability VCID-rdtm-s21h-87az
24
vulnerability VCID-tr6w-mqxr-vueh
25
vulnerability VCID-ud6t-af1d-2yfh
26
vulnerability VCID-vbmp-pabj-r3es
27
vulnerability VCID-vfa1-gfnu-gqgb
28
vulnerability VCID-w2zm-rxx4-xqcy
29
vulnerability VCID-xgmq-ybaw-ckae
30
vulnerability VCID-xju1-g3ft-gyge
31
vulnerability VCID-zcea-b6q9-6fb9
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7
1
url pkg:composer/moodle/moodle@4.3.4
purl pkg:composer/moodle/moodle@4.3.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-24a4-k6sm-zfey
2
vulnerability VCID-2ua4-y1mx-t7f4
3
vulnerability VCID-364m-hhsz-dfcs
4
vulnerability VCID-3dr4-hds3-ckbr
5
vulnerability VCID-3ee8-byud-7kab
6
vulnerability VCID-3v15-csmz-sfe9
7
vulnerability VCID-43r9-m1xz-5qge
8
vulnerability VCID-575h-xhz7-augs
9
vulnerability VCID-5zy2-a2hw-tuba
10
vulnerability VCID-67tn-z6kv-vybp
11
vulnerability VCID-7a6m-m4t2-5ydp
12
vulnerability VCID-7zqn-5pyf-pyg9
13
vulnerability VCID-82cj-8rk2-kygn
14
vulnerability VCID-87yg-v5af-mfd4
15
vulnerability VCID-8w1a-ft6h-g7bt
16
vulnerability VCID-8ydw-ymjw-4qhd
17
vulnerability VCID-95fs-szzk-c3h5
18
vulnerability VCID-9fr5-4a3g-pbga
19
vulnerability VCID-bjdy-pxgn-hkcx
20
vulnerability VCID-bn3p-ccnj-3ubw
21
vulnerability VCID-c6hn-kyf7-g3e4
22
vulnerability VCID-c7uy-k6wn-s3f9
23
vulnerability VCID-catf-58r7-87h5
24
vulnerability VCID-cnqj-gehg-xuhk
25
vulnerability VCID-e6pf-zcvz-mqfr
26
vulnerability VCID-eaej-5e2e-yfcr
27
vulnerability VCID-j897-5zfk-rbhk
28
vulnerability VCID-j9sx-pf51-buhe
29
vulnerability VCID-jn27-7e3d-1uc6
30
vulnerability VCID-k5ku-5n57-w7e3
31
vulnerability VCID-kymv-5vap-7qf7
32
vulnerability VCID-meau-pbrc-5ffv
33
vulnerability VCID-n5hx-mc7q-sua6
34
vulnerability VCID-ndgr-yj2x-tbcr
35
vulnerability VCID-nsvy-6gvu-wqe1
36
vulnerability VCID-nw5a-bxbt-vbg5
37
vulnerability VCID-pg53-92qn-67f4
38
vulnerability VCID-pv24-2amy-4yb9
39
vulnerability VCID-rdtm-s21h-87az
40
vulnerability VCID-s97q-jcmh-ukdh
41
vulnerability VCID-sja2-g5vp-tqev
42
vulnerability VCID-tr6w-mqxr-vueh
43
vulnerability VCID-uc4c-cw57-tyfp
44
vulnerability VCID-ud6t-af1d-2yfh
45
vulnerability VCID-vbmp-pabj-r3es
46
vulnerability VCID-vfa1-gfnu-gqgb
47
vulnerability VCID-w2zm-rxx4-xqcy
48
vulnerability VCID-w84c-jzp6-zkee
49
vulnerability VCID-wsj3-x2v5-y7gc
50
vulnerability VCID-x3bb-7vq7-aqaa
51
vulnerability VCID-xgmq-ybaw-ckae
52
vulnerability VCID-xju1-g3ft-gyge
53
vulnerability VCID-xkgj-r2v3-k3gt
54
vulnerability VCID-zcea-b6q9-6fb9
55
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4
aliases CVE-2024-34002, GHSA-mm9p-xwfm-3fqf
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xzfd-upm6-6fa8
66
url VCID-zcea-b6q9-6fb9
vulnerability_id VCID-zcea-b6q9-6fb9
summary A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-48898
reference_id
reference_type
scores
0
value 0.00229
scoring_system epss
scoring_elements 0.46016
published_at 2026-06-12T12:55:00Z
1
value 0.00229
scoring_system epss
scoring_elements 0.46009
published_at 2026-06-14T12:55:00Z
2
value 0.00229
scoring_system epss
scoring_elements 0.45871
published_at 2026-06-11T12:55:00Z
3
value 0.00229
scoring_system epss
scoring_elements 0.46023
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-48898
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-48898
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-48898
3
reference_url https://github.com/advisories/GHSA-fjq9-452g-jg3q
reference_id GHSA-fjq9-452g-jg3q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fjq9-452g-jg3q
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2318820
reference_id show_bug.cgi?id=2318820
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-18T14:56:14Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2318820
fixed_packages
0
url pkg:composer/moodle/moodle@4.2.11
purl pkg:composer/moodle/moodle@4.2.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-82cj-8rk2-kygn
2
vulnerability VCID-kymv-5vap-7qf7
3
vulnerability VCID-nsvy-6gvu-wqe1
4
vulnerability VCID-pg53-92qn-67f4
5
vulnerability VCID-tr6w-mqxr-vueh
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11
1
url pkg:composer/moodle/moodle@4.3.8
purl pkg:composer/moodle/moodle@4.3.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1svf-1dtz-3qey
1
vulnerability VCID-3dr4-hds3-ckbr
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-67tn-z6kv-vybp
4
vulnerability VCID-7a6m-m4t2-5ydp
5
vulnerability VCID-7zqn-5pyf-pyg9
6
vulnerability VCID-82cj-8rk2-kygn
7
vulnerability VCID-87yg-v5af-mfd4
8
vulnerability VCID-8ydw-ymjw-4qhd
9
vulnerability VCID-95fs-szzk-c3h5
10
vulnerability VCID-bn3p-ccnj-3ubw
11
vulnerability VCID-c7uy-k6wn-s3f9
12
vulnerability VCID-eaej-5e2e-yfcr
13
vulnerability VCID-j897-5zfk-rbhk
14
vulnerability VCID-jn27-7e3d-1uc6
15
vulnerability VCID-kymv-5vap-7qf7
16
vulnerability VCID-n5hx-mc7q-sua6
17
vulnerability VCID-nsvy-6gvu-wqe1
18
vulnerability VCID-pg53-92qn-67f4
19
vulnerability VCID-pv24-2amy-4yb9
20
vulnerability VCID-s97q-jcmh-ukdh
21
vulnerability VCID-sja2-g5vp-tqev
22
vulnerability VCID-tr6w-mqxr-vueh
23
vulnerability VCID-uc4c-cw57-tyfp
24
vulnerability VCID-w84c-jzp6-zkee
25
vulnerability VCID-wsj3-x2v5-y7gc
26
vulnerability VCID-x3bb-7vq7-aqaa
27
vulnerability VCID-xkgj-r2v3-k3gt
28
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8
2
url pkg:composer/moodle/moodle@4.4.4
purl pkg:composer/moodle/moodle@4.4.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3dr4-hds3-ckbr
1
vulnerability VCID-3s11-9e4p-pygy
2
vulnerability VCID-43r9-m1xz-5qge
3
vulnerability VCID-57uf-tz1x-akdt
4
vulnerability VCID-67tn-z6kv-vybp
5
vulnerability VCID-7a6m-m4t2-5ydp
6
vulnerability VCID-7zqn-5pyf-pyg9
7
vulnerability VCID-82cj-8rk2-kygn
8
vulnerability VCID-87yg-v5af-mfd4
9
vulnerability VCID-8ydw-ymjw-4qhd
10
vulnerability VCID-95fs-szzk-c3h5
11
vulnerability VCID-bn3p-ccnj-3ubw
12
vulnerability VCID-c7uy-k6wn-s3f9
13
vulnerability VCID-cra3-6x3q-vkap
14
vulnerability VCID-eaej-5e2e-yfcr
15
vulnerability VCID-ebae-b6eb-s7fr
16
vulnerability VCID-fsuz-rgpw-8qd4
17
vulnerability VCID-gapa-a9xy-w3be
18
vulnerability VCID-hh6z-2319-83g4
19
vulnerability VCID-j897-5zfk-rbhk
20
vulnerability VCID-jn27-7e3d-1uc6
21
vulnerability VCID-kymv-5vap-7qf7
22
vulnerability VCID-n5hx-mc7q-sua6
23
vulnerability VCID-nsvy-6gvu-wqe1
24
vulnerability VCID-nw7f-9kxh-dfer
25
vulnerability VCID-pg53-92qn-67f4
26
vulnerability VCID-pv24-2amy-4yb9
27
vulnerability VCID-s97q-jcmh-ukdh
28
vulnerability VCID-sja2-g5vp-tqev
29
vulnerability VCID-tr6w-mqxr-vueh
30
vulnerability VCID-uc4c-cw57-tyfp
31
vulnerability VCID-w84c-jzp6-zkee
32
vulnerability VCID-wr3n-bk11-a3bj
33
vulnerability VCID-wsj3-x2v5-y7gc
34
vulnerability VCID-x3bb-7vq7-aqaa
35
vulnerability VCID-x9xg-ujre-3ub9
36
vulnerability VCID-xkgj-r2v3-k3gt
37
vulnerability VCID-zkc5-3squ-puep
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4
aliases CVE-2024-48898, GHSA-fjq9-452g-jg3q
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zcea-b6q9-6fb9
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.0