{"url":"http://public2.vulnerablecode.io/api/packages/28880?format=json","purl":"pkg:composer/moodle/moodle@4.2.0","type":"composer","namespace":"moodle","name":"moodle","version":"4.2.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"4.5.9","latest_non_vulnerable_version":"5.1.2","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31757?format=json","vulnerability_id":"VCID-24a4-k6sm-zfey","summary":"A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports, which could result in users without the \"view hidden user fields\" capability having access to the information.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79541","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79541"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43429","reference_id":"","reference_type":"","scores":[{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53291","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53417","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53418","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00296","scoring_system":"epss","scoring_elements":"0.53432","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43429"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43429","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43429"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461197","reference_id":"discuss.php?d=461197","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:15:16Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461197"},{"reference_url":"https://github.com/advisories/GHSA-c767-4whh-v7rw","reference_id":"GHSA-c767-4whh-v7rw","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-c767-4whh-v7rw"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304257","reference_id":"show_bug.cgi?id=2304257","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:15:16Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304257"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43429","GHSA-c767-4whh-v7rw"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-24a4-k6sm-zfey"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/32118?format=json","vulnerability_id":"VCID-352q-17as-77gz","summary":"Separate Groups mode restrictions were not honored when performing a forum export, which would export forum data for all groups. By default this only provided additional access to non-editing teachers.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25981","reference_id":"","reference_type":"","scores":[{"value":"0.00271","scoring_system":"epss","scoring_elements":"0.51002","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00271","scoring_system":"epss","scoring_elements":"0.51014","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00271","scoring_system":"epss","scoring_elements":"0.50999","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00271","scoring_system":"epss","scoring_elements":"0.50866","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25981"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/1c059cb3fe39da46959e912dc671844dd204e83b","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/1c059cb3fe39da46959e912dc671844dd204e83b"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25981","reference_id":"CVE-2024-25981","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25981"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=455637","reference_id":"discuss.php?d=455637","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=455637"},{"reference_url":"https://github.com/advisories/GHSA-jfrg-9hpq-9hvp","reference_id":"GHSA-jfrg-9hpq-9hvp","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-jfrg-9hpq-9hvp"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80504","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80504","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80504"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/","reference_id":"KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264097","reference_id":"show_bug.cgi?id=2264097","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:36Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264097"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/29107?format=json","purl":"pkg:composer/moodle/moodle@4.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6"},{"url":"http://public2.vulnerablecode.io/api/packages/29106?format=json","purl":"pkg:composer/moodle/moodle@4.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-396x-a5g1-p3a1"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8evy-5d1w-3fbm"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-tvbe-wwjn-jkby"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3"}],"aliases":["CVE-2024-25981","GHSA-jfrg-9hpq-9hvp"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-352q-17as-77gz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133529?format=json","vulnerability_id":"VCID-35xa-1mjs-a3au","summary":"ID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5546","reference_id":"","reference_type":"","scores":[{"value":"0.02379","scoring_system":"epss","scoring_elements":"0.85381","published_at":"2026-06-14T12:55:00Z"},{"value":"0.02379","scoring_system":"epss","scoring_elements":"0.85327","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02379","scoring_system":"epss","scoring_elements":"0.85379","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02379","scoring_system":"epss","scoring_elements":"0.85388","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5546"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/aa8ab48521fe4a57c3ec923e6e82a5ac1202e9de","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/aa8ab48521fe4a57c3ec923e6e82a5ac1202e9de"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5546","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5546"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451587","reference_id":"discuss.php?d=451587","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:14:29Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451587"},{"reference_url":"https://github.com/advisories/GHSA-9724-h8p7-r3jv","reference_id":"GHSA-9724-h8p7-r3jv","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9724-h8p7-r3jv"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78971","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78971","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:14:29Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78971"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243445","reference_id":"show_bug.cgi?id=2243445","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:14:29Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243445"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5546","GHSA-9724-h8p7-r3jv"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-35xa-1mjs-a3au"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40679?format=json","vulnerability_id":"VCID-364m-hhsz-dfcs","summary":"A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to \"magic hash\" values.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45691","reference_id":"","reference_type":"","scores":[{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60264","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60375","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60382","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00387","scoring_system":"epss","scoring_elements":"0.60371","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45691"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/3fc1073d304f660d2552b591c5fb92547ed01e92","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/3fc1073d304f660d2552b591c5fb92547ed01e92"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461897#p1854494","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=461897#p1854494"},{"reference_url":"https://moodle.org/security","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/security"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45691","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45691"},{"reference_url":"https://github.com/advisories/GHSA-xfv7-h2qg-rjm7","reference_id":"GHSA-xfv7-h2qg-rjm7","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xfv7-h2qg-rjm7"},{"reference_url":"https://moodle.org/security/","reference_id":"security","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T19:17:16Z/"}],"url":"https://moodle.org/security/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309940","reference_id":"show_bug.cgi?id=2309940","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T19:17:16Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309940"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372836?format=json","purl":"pkg:composer/moodle/moodle@4.2.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.10"},{"url":"http://public2.vulnerablecode.io/api/packages/372837?format=json","purl":"pkg:composer/moodle/moodle@4.3.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.7"},{"url":"http://public2.vulnerablecode.io/api/packages/372780?format=json","purl":"pkg:composer/moodle/moodle@4.4.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.3"}],"aliases":["CVE-2024-45691","GHSA-xfv7-h2qg-rjm7"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-364m-hhsz-dfcs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/109180?format=json","vulnerability_id":"VCID-3dr4-hds3-ckbr","summary":"A flaw was found in Moodle. An attacker with access to the restore interface could trigger server-side execution of arbitrary code. This is due to insufficient validation of restore input, which leads to unintended interpretation by core restore routines. Successful exploitation could result in a full compromise of the Moodle application.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-67847","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09012","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09051","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09063","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09061","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-67847"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=471297#p1892199","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=471297#p1892199"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-67847","reference_id":"CVE-2025-67847","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-24T04:55:19Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-67847"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-67847","reference_id":"CVE-2025-67847","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-67847"},{"reference_url":"https://github.com/advisories/GHSA-xvmh-25jw-gmmm","reference_id":"GHSA-xvmh-25jw-gmmm","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xvmh-25jw-gmmm"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38126?format=json","purl":"pkg:composer/moodle/moodle@4.4.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.12"},{"url":"http://public2.vulnerablecode.io/api/packages/38122?format=json","purl":"pkg:composer/moodle/moodle@4.5.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.8"},{"url":"http://public2.vulnerablecode.io/api/packages/38128?format=json","purl":"pkg:composer/moodle/moodle@5.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/38124?format=json","purl":"pkg:composer/moodle/moodle@5.1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.1"}],"aliases":["CVE-2025-67847","GHSA-xvmh-25jw-gmmm"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3dr4-hds3-ckbr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37254?format=json","vulnerability_id":"VCID-3ee8-byud-7kab","summary":"A unique key should be generated for a user's QR login key and their auto-login key, so the same key cannot be used interchangeably between the two.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38277","reference_id":"","reference_type":"","scores":[{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40429","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.4044","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40418","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.4025","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38277"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/0caedaab7cd5a46331d56654ce9301b0a5a04c56","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/0caedaab7cd5a46331d56654ce9301b0a5a04c56"},{"reference_url":"https://github.com/moodle/moodle/commit/1aea4a15281d81f2414a95aa485b8a6551708f57","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/1aea4a15281d81f2414a95aa485b8a6551708f57"},{"reference_url":"https://github.com/moodle/moodle/commit/ad46a97f5355f0451d52e9f1a0f528d9a6f12e06","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/ad46a97f5355f0451d52e9f1a0f528d9a6f12e06"},{"reference_url":"https://github.com/moodle/moodle/commit/d05795db8eece2943241a29a5443fb4685ba6070","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/d05795db8eece2943241a29a5443fb4685ba6070"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38277","reference_id":"CVE-2024-38277","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38277"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=459502","reference_id":"discuss.php?d=459502","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T15:55:16Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=459502"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/","reference_id":"F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T15:55:16Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/"},{"reference_url":"https://github.com/advisories/GHSA-r82w-3phg-qvr4","reference_id":"GHSA-r82w-3phg-qvr4","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-r82w-3phg-qvr4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/","reference_id":"GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-21T15:55:16Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/32234?format=json","purl":"pkg:composer/moodle/moodle@4.2.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8"},{"url":"http://public2.vulnerablecode.io/api/packages/32230?format=json","purl":"pkg:composer/moodle/moodle@4.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/32232?format=json","purl":"pkg:composer/moodle/moodle@4.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-q51n-px1r-tkh4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1"}],"aliases":["CVE-2024-38277","GHSA-r82w-3phg-qvr4"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3ee8-byud-7kab"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37290?format=json","vulnerability_id":"VCID-3v15-csmz-sfe9","summary":"Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion prompt.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38274","reference_id":"","reference_type":"","scores":[{"value":"0.00994","scoring_system":"epss","scoring_elements":"0.77446","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00994","scoring_system":"epss","scoring_elements":"0.77437","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00994","scoring_system":"epss","scoring_elements":"0.77361","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00994","scoring_system":"epss","scoring_elements":"0.77431","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38274"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"5.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"5.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"5.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38274","reference_id":"CVE-2024-38274","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"5.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38274"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=459499","reference_id":"discuss.php?d=459499","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"5.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-15T18:37:02Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=459499"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/","reference_id":"F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-15T18:37:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/"},{"reference_url":"https://github.com/advisories/GHSA-p5cg-6rfr-6mx8","reference_id":"GHSA-p5cg-6rfr-6mx8","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-p5cg-6rfr-6mx8"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/","reference_id":"GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-15T18:37:02Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/32234?format=json","purl":"pkg:composer/moodle/moodle@4.2.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8"},{"url":"http://public2.vulnerablecode.io/api/packages/32230?format=json","purl":"pkg:composer/moodle/moodle@4.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/32232?format=json","purl":"pkg:composer/moodle/moodle@4.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-q51n-px1r-tkh4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1"}],"aliases":["CVE-2024-38274","GHSA-p5cg-6rfr-6mx8"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3v15-csmz-sfe9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31544?format=json","vulnerability_id":"VCID-575h-xhz7-augs","summary":"A flaw was found in moodle. Insufficient sanitizing of data when performing a restore could result in a cross-site scripting (XSS) risk from malicious backup files.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81394","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"1.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81394"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43437","reference_id":"","reference_type":"","scores":[{"value":"0.01529","scoring_system":"epss","scoring_elements":"0.8171","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01529","scoring_system":"epss","scoring_elements":"0.81771","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01529","scoring_system":"epss","scoring_elements":"0.81772","published_at":"2026-06-14T12:55:00Z"},{"value":"0.01529","scoring_system":"epss","scoring_elements":"0.8178","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43437"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"1.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43437","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"1.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43437"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461207","reference_id":"discuss.php?d=461207","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"1.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-11T14:28:15Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461207"},{"reference_url":"https://github.com/advisories/GHSA-4hjf-6pxr-549h","reference_id":"GHSA-4hjf-6pxr-549h","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-4hjf-6pxr-549h"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304266","reference_id":"show_bug.cgi?id=2304266","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"1.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-11T14:28:15Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304266"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43437","GHSA-4hjf-6pxr-549h"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-575h-xhz7-augs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133291?format=json","vulnerability_id":"VCID-59gr-d6p5-u7fv","summary":"The course upload preview contained an XSS risk for users uploading unsafe data.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5547","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33964","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33784","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33963","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33986","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5547"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/833e818f022cce8373922afaa0cc6c8726b6b079","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/833e818f022cce8373922afaa0cc6c8726b6b079"},{"reference_url":"https://github.com/moodle/moodle/commit/ef67f43c67e00c271658e42fc2e9cbe5fc94a87e","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/ef67f43c67e00c271658e42fc2e9cbe5fc94a87e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5547","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5547"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451588","reference_id":"discuss.php?d=451588","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:25:11Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451588"},{"reference_url":"https://github.com/advisories/GHSA-9gqp-3g28-w9xc","reference_id":"GHSA-9gqp-3g28-w9xc","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9gqp-3g28-w9xc"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79455","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79455","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:25:11Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79455"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243447","reference_id":"show_bug.cgi?id=2243447","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:25:11Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243447"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5547","GHSA-9gqp-3g28-w9xc"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-59gr-d6p5-u7fv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53684?format=json","vulnerability_id":"VCID-5uk3-pd1j-ykgr","summary":"Additional sanitizing was required when opening the equation editor to prevent a stored XSS risk when editing another user's equation.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81352","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81352"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-33997","reference_id":"","reference_type":"","scores":[{"value":"0.00997","scoring_system":"epss","scoring_elements":"0.77457","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00997","scoring_system":"epss","scoring_elements":"0.77387","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00997","scoring_system":"epss","scoring_elements":"0.77463","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00997","scoring_system":"epss","scoring_elements":"0.77472","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-33997"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/25b1b643c873f6d83ae61903012896b2811fa3bb","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/25b1b643c873f6d83ae61903012896b2811fa3bb"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33997","reference_id":"CVE-2024-33997","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33997"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458385","reference_id":"discuss.php?d=458385","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T16:36:59Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458385"},{"reference_url":"https://github.com/advisories/GHSA-9qgq-93c7-9hm4","reference_id":"GHSA-9qgq-93c7-9hm4","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9qgq-93c7-9hm4"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-33997","GHSA-9qgq-93c7-9hm4"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5uk3-pd1j-ykgr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37649?format=json","vulnerability_id":"VCID-5zy2-a2hw-tuba","summary":"Insufficient capability checks meant it was possible for users to gain access to BigBlueButton join URLs they did not have permission to access.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38273","reference_id":"","reference_type":"","scores":[{"value":"0.00199","scoring_system":"epss","scoring_elements":"0.42167","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00199","scoring_system":"epss","scoring_elements":"0.42178","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00199","scoring_system":"epss","scoring_elements":"0.42156","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00199","scoring_system":"epss","scoring_elements":"0.41992","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38273"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/500cec575731fd8575569dcb5811535751dddae1","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/500cec575731fd8575569dcb5811535751dddae1"},{"reference_url":"https://github.com/moodle/moodle/commit/647b9dc06409211018c9f28581504d096ce9e3a8","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/647b9dc06409211018c9f28581504d096ce9e3a8"},{"reference_url":"https://github.com/moodle/moodle/commit/6c0645ca29b195b5caaffc27d80f2ff715c33a48","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/6c0645ca29b195b5caaffc27d80f2ff715c33a48"},{"reference_url":"https://github.com/moodle/moodle/commit/a10506b8d70609478fef156d489e0c7d727b6098","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/a10506b8d70609478fef156d489e0c7d727b6098"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38273","reference_id":"CVE-2024-38273","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38273"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=459498","reference_id":"discuss.php?d=459498","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-20T18:54:37Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=459498"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/","reference_id":"F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-20T18:54:37Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/"},{"reference_url":"https://github.com/advisories/GHSA-x29x-qwvx-fxr2","reference_id":"GHSA-x29x-qwvx-fxr2","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-x29x-qwvx-fxr2"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/","reference_id":"GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-20T18:54:37Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/32234?format=json","purl":"pkg:composer/moodle/moodle@4.2.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8"},{"url":"http://public2.vulnerablecode.io/api/packages/32230?format=json","purl":"pkg:composer/moodle/moodle@4.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/32232?format=json","purl":"pkg:composer/moodle/moodle@4.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-q51n-px1r-tkh4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1"}],"aliases":["CVE-2024-38273","GHSA-x29x-qwvx-fxr2"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5zy2-a2hw-tuba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133470?format=json","vulnerability_id":"VCID-67af-4zk5-sfb2","summary":"A remote code execution risk was identified in the IMSCP activity. By default this was only available to teachers and managers.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5540","reference_id":"","reference_type":"","scores":[{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84838","published_at":"2026-06-14T12:55:00Z"},{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84785","published_at":"2026-06-11T12:55:00Z"},{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84837","published_at":"2026-06-12T12:55:00Z"},{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84846","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5540"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/3400ae6510b11202aa9d86f7e75b3dff10d81522","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/3400ae6510b11202aa9d86f7e75b3dff10d81522"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5540","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5540"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451581","reference_id":"discuss.php?d=451581","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-22T20:12:01Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451581"},{"reference_url":"https://github.com/advisories/GHSA-w8x2-w4qr-v3x4","reference_id":"GHSA-w8x2-w4qr-v3x4","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-w8x2-w4qr-v3x4"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79409","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79409","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-22T20:12:01Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79409"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243432","reference_id":"show_bug.cgi?id=2243432","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-22T20:12:01Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243432"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5540","GHSA-w8x2-w4qr-v3x4"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-67af-4zk5-sfb2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133649?format=json","vulnerability_id":"VCID-6h6h-ny96-x7hu","summary":"When duplicating a BigBlueButton activity, the original meeting ID was also duplicated instead of using a new ID for the new activity. This could provide unintended access to the original meeting.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5543","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25316","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25112","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25311","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25328","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5543"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5543","reference_id":"CVE-2023-5543","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5543"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451584","reference_id":"discuss.php?d=451584","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T21:03:37Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451584"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77795","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77795","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T21:03:37Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77795"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243442","reference_id":"show_bug.cgi?id=2243442","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T21:03:37Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243442"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"}],"aliases":["CVE-2023-5543"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6h6h-ny96-x7hu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/32107?format=json","vulnerability_id":"VCID-7z7h-w68u-1bc7","summary":"Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25980","reference_id":"","reference_type":"","scores":[{"value":"0.00167","scoring_system":"epss","scoring_elements":"0.37771","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00167","scoring_system":"epss","scoring_elements":"0.37582","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00167","scoring_system":"epss","scoring_elements":"0.37759","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00167","scoring_system":"epss","scoring_elements":"0.37784","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25980"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/662192fcecdefdaae79f55db96bd64dbcdeef85b","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/662192fcecdefdaae79f55db96bd64dbcdeef85b"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25980","reference_id":"CVE-2024-25980","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25980"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=455636","reference_id":"discuss.php?d=455636","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=455636"},{"reference_url":"https://github.com/advisories/GHSA-cp8m-h777-g4p3","reference_id":"GHSA-cp8m-h777-g4p3","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cp8m-h777-g4p3"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80501","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80501","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80501"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/","reference_id":"KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264096","reference_id":"show_bug.cgi?id=2264096","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:42:10Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264096"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/29107?format=json","purl":"pkg:composer/moodle/moodle@4.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6"},{"url":"http://public2.vulnerablecode.io/api/packages/29106?format=json","purl":"pkg:composer/moodle/moodle@4.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-396x-a5g1-p3a1"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8evy-5d1w-3fbm"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-tvbe-wwjn-jkby"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3"}],"aliases":["CVE-2024-25980","GHSA-cp8m-h777-g4p3"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7z7h-w68u-1bc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/71012?format=json","vulnerability_id":"VCID-82cj-8rk2-kygn","summary":"A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files were not properly validated during processing. If a malicious backup file is restored, it could lead to unintended execution of server-side code. Since restore capabilities are typically available to privileged users, exploitation requires authenticated access. Successful exploitation could result in full compromise of the Moodle server.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-26045","reference_id":"","reference_type":"","scores":[{"value":"0.00113","scoring_system":"epss","scoring_elements":"0.29729","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00113","scoring_system":"epss","scoring_elements":"0.2953","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00113","scoring_system":"epss","scoring_elements":"0.29727","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00113","scoring_system":"epss","scoring_elements":"0.29745","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-26045"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/566054ba11f609a6d48d09b32e85d435d49927da","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/566054ba11f609a6d48d09b32e85d435d49927da"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=473314","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=473314"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-26045","reference_id":"CVE-2026-26045","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-24T04:56:33Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-26045"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-26045","reference_id":"CVE-2026-26045","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-26045"},{"reference_url":"https://github.com/advisories/GHSA-ggxq-2mg9-8966","reference_id":"GHSA-ggxq-2mg9-8966","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-ggxq-2mg9-8966"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2440901","reference_id":"show_bug.cgi?id=2440901","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-24T04:56:33Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2440901"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/39494?format=json","purl":"pkg:composer/moodle/moodle@4.5.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.9"},{"url":"http://public2.vulnerablecode.io/api/packages/39493?format=json","purl":"pkg:composer/moodle/moodle@5.0.5","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/39495?format=json","purl":"pkg:composer/moodle/moodle@5.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.2"}],"aliases":["CVE-2026-26045","GHSA-ggxq-2mg9-8966"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-82cj-8rk2-kygn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40697?format=json","vulnerability_id":"VCID-8w1a-ft6h-g7bt","summary":"A flaw was found in Moodle. Dynamic tables did not enforce capability checks, which resulted in users having the ability to retrieve information they did not have permission to access.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45689","reference_id":"","reference_type":"","scores":[{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31632","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31615","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31423","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45689"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/bb466df202a4b4a692006298f93cbba20566949c","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/bb466df202a4b4a692006298f93cbba20566949c"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461894#p1854491","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=461894#p1854491"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45689","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45689"},{"reference_url":"https://github.com/advisories/GHSA-j822-x5gg-5r56","reference_id":"GHSA-j822-x5gg-5r56","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-j822-x5gg-5r56"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309941","reference_id":"show_bug.cgi?id=2309941","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T19:17:47Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309941"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372836?format=json","purl":"pkg:composer/moodle/moodle@4.2.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.10"},{"url":"http://public2.vulnerablecode.io/api/packages/372837?format=json","purl":"pkg:composer/moodle/moodle@4.3.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.7"},{"url":"http://public2.vulnerablecode.io/api/packages/372780?format=json","purl":"pkg:composer/moodle/moodle@4.4.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.3"}],"aliases":["CVE-2024-45689","GHSA-j822-x5gg-5r56"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8w1a-ft6h-g7bt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56246?format=json","vulnerability_id":"VCID-9fr5-4a3g-pbga","summary":"A vulnerability was found in Moodle. It is possible for users with the \"send message\" capability to view other users' names that they may not otherwise have access to via an error message in Messaging. Note: The name returned follows the full name format configured on the site.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48896","reference_id":"","reference_type":"","scores":[{"value":"0.0031","scoring_system":"epss","scoring_elements":"0.54573","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0031","scoring_system":"epss","scoring_elements":"0.54715","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0031","scoring_system":"epss","scoring_elements":"0.54698","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48896"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48896","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48896"},{"reference_url":"https://github.com/advisories/GHSA-cq5f-wv7p-5gfc","reference_id":"GHSA-cq5f-wv7p-5gfc","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cq5f-wv7p-5gfc"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318822","reference_id":"show_bug.cgi?id=2318822","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-18T14:57:51Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318822"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372791?format=json","purl":"pkg:composer/moodle/moodle@4.2.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11"},{"url":"http://public2.vulnerablecode.io/api/packages/372792?format=json","purl":"pkg:composer/moodle/moodle@4.3.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/372793?format=json","purl":"pkg:composer/moodle/moodle@4.4.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4"}],"aliases":["CVE-2024-48896","GHSA-cq5f-wv7p-5gfc"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9fr5-4a3g-pbga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133435?format=json","vulnerability_id":"VCID-9szm-emq8-gfdf","summary":"Students in \"Only see own membership\" groups could see other students in the group, which should be hidden.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5542","reference_id":"","reference_type":"","scores":[{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.50748","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.5061","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.50744","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.50761","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5542"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/b0bb97ee3b481dd85d8f1ed3612f70c9d1939014","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/b0bb97ee3b481dd85d8f1ed3612f70c9d1939014"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5542","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5542"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451583","reference_id":"discuss.php?d=451583","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-21T17:05:11Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451583"},{"reference_url":"https://github.com/advisories/GHSA-8mm2-m2gp-c6x2","reference_id":"GHSA-8mm2-m2gp-c6x2","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8mm2-m2gp-c6x2"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-21T17:05:11Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243441","reference_id":"show_bug.cgi?id=2243441","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-21T17:05:11Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243441"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5542","GHSA-8mm2-m2gp-c6x2"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9szm-emq8-gfdf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133456?format=json","vulnerability_id":"VCID-9u8e-pp4p-nqht","summary":"In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user who also has direct access to the web server outside of the Moodle webroot could utilise a local file include to achieve remote code execution.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5550","reference_id":"","reference_type":"","scores":[{"value":"0.01474","scoring_system":"epss","scoring_elements":"0.81438","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01474","scoring_system":"epss","scoring_elements":"0.81369","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01474","scoring_system":"epss","scoring_elements":"0.81429","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5550"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/77766f9c8af8fc8d861d7ac09ce4e1f6e72faca7","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/77766f9c8af8fc8d861d7ac09ce4e1f6e72faca7"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5550","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5550"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451591","reference_id":"discuss.php?d=451591","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-27T19:58:39Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451591"},{"reference_url":"https://github.com/advisories/GHSA-5cvx-cwpx-9rjh","reference_id":"GHSA-5cvx-cwpx-9rjh","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5cvx-cwpx-9rjh"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-72249","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-72249","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-27T19:58:39Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-72249"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243452","reference_id":"show_bug.cgi?id=2243452","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-06-27T19:58:39Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243452"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5550","GHSA-5cvx-cwpx-9rjh"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9u8e-pp4p-nqht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/32318?format=json","vulnerability_id":"VCID-b2xd-3ek1-27b9","summary":"The URL parameters accepted by forum search were not limited to the allowed parameters.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25979","reference_id":"","reference_type":"","scores":[{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37045","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37223","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00163","scoring_system":"epss","scoring_elements":"0.37249","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25979"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/6eaeeda6cf759672def05a85afe9e4d521739166","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/6eaeeda6cf759672def05a85afe9e4d521739166"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25979","reference_id":"CVE-2024-25979","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25979"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=455635","reference_id":"discuss.php?d=455635","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=455635"},{"reference_url":"https://github.com/advisories/GHSA-6vjf-48fh-vxxj","reference_id":"GHSA-6vjf-48fh-vxxj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6vjf-48fh-vxxj"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-69774","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-69774","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-69774"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/","reference_id":"KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264095","reference_id":"show_bug.cgi?id=2264095","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-21T17:42:19Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264095"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/29107?format=json","purl":"pkg:composer/moodle/moodle@4.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6"},{"url":"http://public2.vulnerablecode.io/api/packages/29106?format=json","purl":"pkg:composer/moodle/moodle@4.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-396x-a5g1-p3a1"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8evy-5d1w-3fbm"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-tvbe-wwjn-jkby"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3"}],"aliases":["CVE-2024-25979","GHSA-6vjf-48fh-vxxj"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b2xd-3ek1-27b9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49315?format=json","vulnerability_id":"VCID-b53y-qvcd-9bc2","summary":"In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80712","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80712"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34003","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39244","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39219","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39047","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39236","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34003"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34003","reference_id":"CVE-2024-34003","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34003"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458391","reference_id":"discuss.php?d=458391","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-01T13:16:51Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458391"},{"reference_url":"https://github.com/advisories/GHSA-jg4f-8w9x-jv35","reference_id":"GHSA-jg4f-8w9x-jv35","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-jg4f-8w9x-jv35"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34003","GHSA-jg4f-8w9x-jv35"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b53y-qvcd-9bc2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49583?format=json","vulnerability_id":"VCID-b9r4-vfvf-r3cx","summary":"In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34005","reference_id":"","reference_type":"","scores":[{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.63955","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.63953","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.63838","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.6394","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34005"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/ffa045e09912349ed08d6591ec84cb83e57235cc","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/ffa045e09912349ed08d6591ec84cb83e57235cc"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34005","reference_id":"CVE-2024-34005","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34005"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458394","reference_id":"discuss.php?d=458394","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T19:36:05Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458394"},{"reference_url":"https://github.com/advisories/GHSA-r99q-hmqv-xw8w","reference_id":"GHSA-r99q-hmqv-xw8w","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-r99q-hmqv-xw8w"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34005","GHSA-r99q-hmqv-xw8w"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b9r4-vfvf-r3cx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53327?format=json","vulnerability_id":"VCID-bhnn-ae5z-53cm","summary":"Incorrect validation of allowed event types in a calendar web service made it possible for some users to create events with types/audiences they did not have permission to publish to.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81247","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81247"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-33996","reference_id":"","reference_type":"","scores":[{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39027","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39004","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38832","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39018","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-33996"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33996","reference_id":"CVE-2024-33996","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33996"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458384#p1840909","reference_id":"discuss.php?d=458384#p1840909","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-01T13:14:42Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458384#p1840909"},{"reference_url":"https://github.com/advisories/GHSA-4qww-rxq6-x7gf","reference_id":"GHSA-4qww-rxq6-x7gf","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-4qww-rxq6-x7gf"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-33996","GHSA-4qww-rxq6-x7gf"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bhnn-ae5z-53cm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31296?format=json","vulnerability_id":"VCID-bjdy-pxgn-hkcx","summary":"A flaw was found in moodle. The cURL wrapper in Moodle strips HTTPAUTH and USERPWD headers during emulated redirects, but retains other original request headers, so HTTP authorization header information could be unintentionally sent in requests to redirect URLs.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82136","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82136"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43432","reference_id":"","reference_type":"","scores":[{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56827","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56948","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56952","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56962","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43432"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43432","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43432"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461200","reference_id":"discuss.php?d=461200","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:06:57Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461200"},{"reference_url":"https://github.com/advisories/GHSA-7wmp-2xmx-g6h8","reference_id":"GHSA-7wmp-2xmx-g6h8","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7wmp-2xmx-g6h8"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304260","reference_id":"show_bug.cgi?id=2304260","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:06:57Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304260"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43432","GHSA-7wmp-2xmx-g6h8"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bjdy-pxgn-hkcx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40702?format=json","vulnerability_id":"VCID-c6hn-kyf7-g3e4","summary":"A flaw was found in Moodle. Additional checks were required to ensure users can only delete their OAuth2-linked accounts.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45690","reference_id":"","reference_type":"","scores":[{"value":"0.00393","scoring_system":"epss","scoring_elements":"0.60689","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00393","scoring_system":"epss","scoring_elements":"0.60795","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00393","scoring_system":"epss","scoring_elements":"0.60804","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00393","scoring_system":"epss","scoring_elements":"0.60794","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45690"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/809629e5afcd5be087e65668fe6cf67f2f4f5145","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/809629e5afcd5be087e65668fe6cf67f2f4f5145"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461895#p1854492","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=461895#p1854492"},{"reference_url":"https://moodle.org/security","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/security"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45690","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45690"},{"reference_url":"https://github.com/advisories/GHSA-fhg2-r2h9-h7q8","reference_id":"GHSA-fhg2-r2h9-h7q8","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-fhg2-r2h9-h7q8"},{"reference_url":"https://moodle.org/security/","reference_id":"security","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:15:47Z/"}],"url":"https://moodle.org/security/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309939","reference_id":"show_bug.cgi?id=2309939","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:15:47Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309939"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372836?format=json","purl":"pkg:composer/moodle/moodle@4.2.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.10"},{"url":"http://public2.vulnerablecode.io/api/packages/372837?format=json","purl":"pkg:composer/moodle/moodle@4.3.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.7"},{"url":"http://public2.vulnerablecode.io/api/packages/372780?format=json","purl":"pkg:composer/moodle/moodle@4.4.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.3"}],"aliases":["CVE-2024-45690","GHSA-fhg2-r2h9-h7q8"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c6hn-kyf7-g3e4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/32051?format=json","vulnerability_id":"VCID-catf-58r7-87h5","summary":"A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43436","reference_id":"","reference_type":"","scores":[{"value":"0.00496","scoring_system":"epss","scoring_elements":"0.66237","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00496","scoring_system":"epss","scoring_elements":"0.66342","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00496","scoring_system":"epss","scoring_elements":"0.66344","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00496","scoring_system":"epss","scoring_elements":"0.66331","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43436"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"6.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43436","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"6.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43436"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461206","reference_id":"discuss.php?d=461206","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"6.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:37Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461206"},{"reference_url":"https://github.com/advisories/GHSA-mx26-62xm-2p83","reference_id":"GHSA-mx26-62xm-2p83","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mx26-62xm-2p83"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304264","reference_id":"show_bug.cgi?id=2304264","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"6.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:37Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304264"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43436","GHSA-mx26-62xm-2p83"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-catf-58r7-87h5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37332?format=json","vulnerability_id":"VCID-cnqj-gehg-xuhk","summary":"Incorrect CSRF token checks resulted in multiple CSRF risks.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38276","reference_id":"","reference_type":"","scores":[{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.50708","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.50722","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.50705","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00268","scoring_system":"epss","scoring_elements":"0.50571","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38276"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/093aedf79889114d004495f05969168b646b0285","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/093aedf79889114d004495f05969168b646b0285"},{"reference_url":"https://github.com/moodle/moodle/commit/137d311fd1354c679b974633512a771e6e0559a1","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/137d311fd1354c679b974633512a771e6e0559a1"},{"reference_url":"https://github.com/moodle/moodle/commit/30fadc3686fa7490860a0bd87a29636139dfb371","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/30fadc3686fa7490860a0bd87a29636139dfb371"},{"reference_url":"https://github.com/moodle/moodle/commit/31ced0851189a6879e4cd27c7e65d21dd9d6e87e","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/31ced0851189a6879e4cd27c7e65d21dd9d6e87e"},{"reference_url":"https://github.com/moodle/moodle/commit/57f20b6cb352893871c3afdfa8a4c09a96e16764","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/57f20b6cb352893871c3afdfa8a4c09a96e16764"},{"reference_url":"https://github.com/moodle/moodle/commit/756090ed79aa056d0b5f58e7a1dff67f139f76b4","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/756090ed79aa056d0b5f58e7a1dff67f139f76b4"},{"reference_url":"https://github.com/moodle/moodle/commit/9af9711c0a78ebad87d49bcb369ff813bc57d0a7","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/9af9711c0a78ebad87d49bcb369ff813bc57d0a7"},{"reference_url":"https://github.com/moodle/moodle/commit/a0d8c025f732d5c18a2b9d1a8e5cbee35dce86f4","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/a0d8c025f732d5c18a2b9d1a8e5cbee35dce86f4"},{"reference_url":"https://github.com/moodle/moodle/commit/c18b59808cefe7b54c85dce6bf2cc71601080667","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/c18b59808cefe7b54c85dce6bf2cc71601080667"},{"reference_url":"https://github.com/moodle/moodle/commit/c1aacb3e2884ea4dcc221c5ef2e449ce345f78ae","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/c1aacb3e2884ea4dcc221c5ef2e449ce345f78ae"},{"reference_url":"https://github.com/moodle/moodle/commit/c5b1604e8136db6d72057dd8052955058489206c","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/c5b1604e8136db6d72057dd8052955058489206c"},{"reference_url":"https://github.com/moodle/moodle/commit/da8e8cee6ffaf7c184eded97e1016f20c9de0561","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/da8e8cee6ffaf7c184eded97e1016f20c9de0561"},{"reference_url":"https://github.com/moodle/moodle/commit/dc84fcfab06a4a0fe37797b8422e9fe3a1031c3e","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/dc84fcfab06a4a0fe37797b8422e9fe3a1031c3e"},{"reference_url":"https://github.com/moodle/moodle/commit/e1dab5f38166a2ff62983178f7bf8f0ed3a61090","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/e1dab5f38166a2ff62983178f7bf8f0ed3a61090"},{"reference_url":"https://github.com/moodle/moodle/commit/e23f603c41055ab92f9b430cf0e7a54b4e120f95","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/e23f603c41055ab92f9b430cf0e7a54b4e120f95"},{"reference_url":"https://github.com/moodle/moodle/commit/f2807dee5bc777d9c58b7a70cba6e4c21ee02ea1","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/f2807dee5bc777d9c58b7a70cba6e4c21ee02ea1"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38276","reference_id":"CVE-2024-38276","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38276"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=459501","reference_id":"discuss.php?d=459501","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-25T17:33:38Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=459501"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/","reference_id":"F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-25T17:33:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7AZYR7EXV6E5SQE2GYTNQE3NOENJCQ6/"},{"reference_url":"https://github.com/advisories/GHSA-356g-7x36-7m34","reference_id":"GHSA-356g-7x36-7m34","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-356g-7x36-7m34"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/","reference_id":"GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-25T17:33:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHTIX55J4Q4LEOMLNEA4OZSWVEENQX7E/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/32234?format=json","purl":"pkg:composer/moodle/moodle@4.2.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8"},{"url":"http://public2.vulnerablecode.io/api/packages/32230?format=json","purl":"pkg:composer/moodle/moodle@4.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/32232?format=json","purl":"pkg:composer/moodle/moodle@4.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-q51n-px1r-tkh4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1"}],"aliases":["CVE-2024-38276","GHSA-356g-7x36-7m34"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cnqj-gehg-xuhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31684?format=json","vulnerability_id":"VCID-e6pf-zcvz-mqfr","summary":"The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check, leading to a CSRF vulnerability.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43434","reference_id":"","reference_type":"","scores":[{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.67339","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.67441","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.67444","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.6743","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43434"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"8.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43434","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"8.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43434"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461203","reference_id":"discuss.php?d=461203","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"8.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:44Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461203"},{"reference_url":"https://github.com/advisories/GHSA-x87r-37q5-mmr8","reference_id":"GHSA-x87r-37q5-mmr8","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-x87r-37q5-mmr8"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304262","reference_id":"show_bug.cgi?id=2304262","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"8.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:40:44Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304262"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43434","GHSA-x87r-37q5-mmr8"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6pf-zcvz-mqfr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/32087?format=json","vulnerability_id":"VCID-epz3-rnb8-bybr","summary":"The link to update all installed language packs did not include the necessary token to prevent a CSRF risk.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25982","reference_id":"","reference_type":"","scores":[{"value":"0.0038","scoring_system":"epss","scoring_elements":"0.59967","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0038","scoring_system":"epss","scoring_elements":"0.59856","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0038","scoring_system":"epss","scoring_elements":"0.59964","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0038","scoring_system":"epss","scoring_elements":"0.59976","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25982"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/bac703c534d05d4502580fbe32447d5c777869bf","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/bac703c534d05d4502580fbe32447d5c777869bf"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25982","reference_id":"CVE-2024-25982","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25982"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=455638","reference_id":"discuss.php?d=455638","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=455638"},{"reference_url":"https://github.com/advisories/GHSA-7pjp-fm93-p6pj","reference_id":"GHSA-7pjp-fm93-p6pj","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7pjp-fm93-p6pj"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-54749","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-54749","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-54749"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/","reference_id":"KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264098","reference_id":"show_bug.cgi?id=2264098","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:39:38Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264098"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/29107?format=json","purl":"pkg:composer/moodle/moodle@4.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6"},{"url":"http://public2.vulnerablecode.io/api/packages/29106?format=json","purl":"pkg:composer/moodle/moodle@4.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-396x-a5g1-p3a1"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8evy-5d1w-3fbm"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-tvbe-wwjn-jkby"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3"}],"aliases":["CVE-2024-25982","GHSA-7pjp-fm93-p6pj"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-epz3-rnb8-bybr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53863?format=json","vulnerability_id":"VCID-ez7r-y64f-dbbx","summary":"Insufficient escaping of participants' names in the participants page table resulted in a stored XSS risk when interacting with some features.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81354","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81354"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-33998","reference_id":"","reference_type":"","scores":[{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80829","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.809","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80891","published_at":"2026-06-14T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80889","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-33998"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/66da9394993d97861f6c80bc4ec4ee9b513d2f33","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/66da9394993d97861f6c80bc4ec4ee9b513d2f33"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33998","reference_id":"CVE-2024-33998","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33998"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458386","reference_id":"discuss.php?d=458386","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T14:26:53Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458386"},{"reference_url":"https://github.com/advisories/GHSA-xqhh-253w-4q5f","reference_id":"GHSA-xqhh-253w-4q5f","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xqhh-253w-4q5f"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-33998","GHSA-xqhh-253w-4q5f"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ez7r-y64f-dbbx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137687?format=json","vulnerability_id":"VCID-f5ys-s8gt-5fcv","summary":"A limited SQL injection risk was identified on the Mnet SSO access control page. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77193","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77193"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-35132","reference_id":"","reference_type":"","scores":[{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49267","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49409","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49422","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49404","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-35132"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-35132","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-35132"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/","reference_id":"7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=447830","reference_id":"discuss.php?d=447830","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=447830"},{"reference_url":"https://github.com/advisories/GHSA-49mv-vfcp-8gg9","reference_id":"GHSA-49mv-vfcp-8gg9","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-49mv-vfcp-8gg9"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/","reference_id":"I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2214371","reference_id":"show_bug.cgi?id=2214371","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T20:53:51Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2214371"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381598?format=json","purl":"pkg:composer/moodle/moodle@4.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-35xa-1mjs-a3au"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-59gr-d6p5-u7fv"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67af-4zk5-sfb2"},{"vulnerability":"VCID-6h6h-ny96-x7hu"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-9u8e-pp4p-nqht"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-g8bf-eeaa-hygf"},{"vulnerability":"VCID-gtz8-utju-qfah"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kegp-rnfw-83b4"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-t8ha-9bhp-fbbq"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-u1ke-y4et-6ye8"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-uuqh-tq51-tbex"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wf3q-rpbt-pfg7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1"}],"aliases":["CVE-2023-35132","GHSA-49mv-vfcp-8gg9"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f5ys-s8gt-5fcv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133784?format=json","vulnerability_id":"VCID-g8bf-eeaa-hygf","summary":"Insufficient web service capability checks made it possible to move categories a user had permission to manage, to a parent category they did not have the capability to manage.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5549","reference_id":"","reference_type":"","scores":[{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49412","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49269","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49407","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49425","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5549"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/5a765e124c950b1e4313c9bf96ea2dd194f65c75","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/5a765e124c950b1e4313c9bf96ea2dd194f65c75"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5549","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5549"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451590","reference_id":"discuss.php?d=451590","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:16:10Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451590"},{"reference_url":"https://github.com/advisories/GHSA-fm5h-58g2-4m3f","reference_id":"GHSA-fm5h-58g2-4m3f","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-fm5h-58g2-4m3f"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-66730","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-66730","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:16:10Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-66730"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243451","reference_id":"show_bug.cgi?id=2243451","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:16:10Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243451"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5549","GHSA-fm5h-58g2-4m3f"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g8bf-eeaa-hygf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/358207?format=json","vulnerability_id":"VCID-gtz8-utju-qfah","summary":"","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77846","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-77846"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5548","reference_id":"","reference_type":"","scores":[{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.51458","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.51589","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.51601","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.51587","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5548"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243449","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243449"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/7679452caff6faa33f00d3f0589c5190bc01a933","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/7679452caff6faa33f00d3f0589c5190bc01a933"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451589","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=451589"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5548","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5548"},{"reference_url":"https://github.com/advisories/GHSA-cwh2-q44x-5w3c","reference_id":"GHSA-cwh2-q44x-5w3c","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cwh2-q44x-5w3c"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5548","GHSA-cwh2-q44x-5w3c"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gtz8-utju-qfah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56346?format=json","vulnerability_id":"VCID-j9sx-pf51-buhe","summary":"A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48897","reference_id":"","reference_type":"","scores":[{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46016","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46009","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.45871","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46023","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48897"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48897","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48897"},{"reference_url":"https://github.com/advisories/GHSA-x3x9-349x-2485","reference_id":"GHSA-x3x9-349x-2485","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-x3x9-349x-2485"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318821","reference_id":"show_bug.cgi?id=2318821","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-19T14:51:39Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318821"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372791?format=json","purl":"pkg:composer/moodle/moodle@4.2.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11"},{"url":"http://public2.vulnerablecode.io/api/packages/372792?format=json","purl":"pkg:composer/moodle/moodle@4.3.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/372793?format=json","purl":"pkg:composer/moodle/moodle@4.4.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4"}],"aliases":["CVE-2024-48897","GHSA-x3x9-349x-2485"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j9sx-pf51-buhe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49622?format=json","vulnerability_id":"VCID-jejy-353t-x3de","summary":"In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34004","reference_id":"","reference_type":"","scores":[{"value":"0.00307","scoring_system":"epss","scoring_elements":"0.54291","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00307","scoring_system":"epss","scoring_elements":"0.54418","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00307","scoring_system":"epss","scoring_elements":"0.54433","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00307","scoring_system":"epss","scoring_elements":"0.54417","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34004"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34004","reference_id":"CVE-2024-34004","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34004"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458393","reference_id":"discuss.php?d=458393","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T14:26:27Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458393"},{"reference_url":"https://github.com/advisories/GHSA-q3cm-ccrm-2mr6","reference_id":"GHSA-q3cm-ccrm-2mr6","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-q3cm-ccrm-2mr6"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34004","GHSA-q3cm-ccrm-2mr6"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jejy-353t-x3de"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/54085?format=json","vulnerability_id":"VCID-jgqf-6s2h-vqd8","summary":"Inadequate access control in Moodle LMS. This vulnerability could allow a local user with a student role to create arbitrary events intended for users with higher roles. It could also allow the attacker to add events to the calendar of all users without their prior consent.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1439","reference_id":"","reference_type":"","scores":[{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21388","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21375","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21206","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21401","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-1439"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-1439","reference_id":"CVE-2024-1439","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-1439"},{"reference_url":"https://github.com/advisories/GHSA-5p2x-8427-9fgp","reference_id":"GHSA-5p2x-8427-9fgp","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5p2x-8427-9fgp"},{"reference_url":"https://www.incibe.es/en/incibe-cert/notices/aviso/inadequate-access-control-vulnerability-moodle","reference_id":"inadequate-access-control-vulnerability-moodle","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-12T16:28:28Z/"}],"url":"https://www.incibe.es/en/incibe-cert/notices/aviso/inadequate-access-control-vulnerability-moodle"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381598?format=json","purl":"pkg:composer/moodle/moodle@4.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-35xa-1mjs-a3au"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-59gr-d6p5-u7fv"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67af-4zk5-sfb2"},{"vulnerability":"VCID-6h6h-ny96-x7hu"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-9u8e-pp4p-nqht"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-g8bf-eeaa-hygf"},{"vulnerability":"VCID-gtz8-utju-qfah"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kegp-rnfw-83b4"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-t8ha-9bhp-fbbq"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-u1ke-y4et-6ye8"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-uuqh-tq51-tbex"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wf3q-rpbt-pfg7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1"}],"aliases":["CVE-2024-1439","GHSA-5p2x-8427-9fgp"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jgqf-6s2h-vqd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31372?format=json","vulnerability_id":"VCID-k5ku-5n57-w7e3","summary":"A flaw was found in pdfTeX. Insufficient sanitizing in the TeX notation filter resulted in an arbitrary file read risk on sites where pdfTeX is available, such as those with TeX Live installed.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43426","reference_id":"","reference_type":"","scores":[{"value":"0.00911","scoring_system":"epss","scoring_elements":"0.76276","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00911","scoring_system":"epss","scoring_elements":"0.76355","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00911","scoring_system":"epss","scoring_elements":"0.7636","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00911","scoring_system":"epss","scoring_elements":"0.76346","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43426"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82745","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82745"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43426","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43426"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461194","reference_id":"discuss.php?d=461194","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:41:10Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461194"},{"reference_url":"https://github.com/advisories/GHSA-vjmm-r9gg-425m","reference_id":"GHSA-vjmm-r9gg-425m","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vjmm-r9gg-425m"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304254","reference_id":"show_bug.cgi?id=2304254","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:41:10Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304254"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43426","GHSA-vjmm-r9gg-425m"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k5ku-5n57-w7e3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/358206?format=json","vulnerability_id":"VCID-kegp-rnfw-83b4","summary":"","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79509","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79509"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5544","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39023","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39196","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.3922","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39212","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5544"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243443","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243443"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/5fec728be9df3c9fc282cd0897c73ca5cfcfea5f","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/5fec728be9df3c9fc282cd0897c73ca5cfcfea5f"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451585","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=451585"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5544","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5544"},{"reference_url":"https://github.com/advisories/GHSA-j5xf-gv89-g422","reference_id":"GHSA-j5xf-gv89-g422","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-j5xf-gv89-g422"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5544","GHSA-j5xf-gv89-g422"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kegp-rnfw-83b4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102972?format=json","vulnerability_id":"VCID-kymv-5vap-7qf7","summary":"An issue in Moodle’s timed assignment feature allowed students to bypass the time restriction, potentially giving them more time than allowed to complete an assessment.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62401","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.1307","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12989","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.13085","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.13094","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62401"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/78a3fe6c618676dfc53ea538abbfe35e60674eeb","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/78a3fe6c618676dfc53ea538abbfe35e60674eeb"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=470390","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=470390"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-62401","reference_id":"CVE-2025-62401","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:38:17Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-62401"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-62401","reference_id":"CVE-2025-62401","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-62401"},{"reference_url":"https://github.com/advisories/GHSA-w29j-8phw-ffjf","reference_id":"GHSA-w29j-8phw-ffjf","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-w29j-8phw-ffjf"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2404434","reference_id":"show_bug.cgi?id=2404434","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:38:17Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2404434"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/34731?format=json","purl":"pkg:composer/moodle/moodle@4.4.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11"},{"url":"http://public2.vulnerablecode.io/api/packages/34729?format=json","purl":"pkg:composer/moodle/moodle@4.5.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7"},{"url":"http://public2.vulnerablecode.io/api/packages/34727?format=json","purl":"pkg:composer/moodle/moodle@5.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3"}],"aliases":["CVE-2025-62401","GHSA-w29j-8phw-ffjf"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kymv-5vap-7qf7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31474?format=json","vulnerability_id":"VCID-meau-pbrc-5ffv","summary":"A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82576","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"7.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-82576"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43425","reference_id":"","reference_type":"","scores":[{"value":"0.88917","scoring_system":"epss","scoring_elements":"0.99543","published_at":"2026-06-11T12:55:00Z"},{"value":"0.88917","scoring_system":"epss","scoring_elements":"0.99544","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43425"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"7.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43425","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"7.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43425"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52350.py","reference_id":"CVE-2024-43425","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52350.py"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461193","reference_id":"discuss.php?d=461193","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"7.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:20Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461193"},{"reference_url":"https://github.com/advisories/GHSA-v6f4-v8h8-3c87","reference_id":"GHSA-v6f4-v8h8-3c87","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-v6f4-v8h8-3c87"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304253","reference_id":"show_bug.cgi?id=2304253","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"7.2","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:20Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304253"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43425","GHSA-v6f4-v8h8-3c87"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-meau-pbrc-5ffv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40150?format=json","vulnerability_id":"VCID-mm87-9trq-ykca","summary":"The Chat activity in Moodle 4.3.3 allows students to insert a potentially unwanted HTML A element or IMG element, or HTML content that leads to a performance degradation. NOTE: the vendor's Using_Chat page says \"If you know some HTML code, you can use it in your text to do things like insert images, play sounds or create different coloured and sized text.\" This page also says \"Chat is due to be removed from standard Moodle.\"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-28593","reference_id":"","reference_type":"","scores":[{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34363","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34359","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34383","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-28593"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-28593","reference_id":"CVE-2024-28593","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-28593"},{"reference_url":"https://gist.githubusercontent.com/minendie/4f23174687bc4d8eb7f727d9959b5399/raw/9ce573cebcce5521d9d6f826ab68f3780036b874/CVE-2024-28593.txt","reference_id":"CVE-2024-28593.txt","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-25T16:47:10Z/"}],"url":"https://gist.githubusercontent.com/minendie/4f23174687bc4d8eb7f727d9959b5399/raw/9ce573cebcce5521d9d6f826ab68f3780036b874/CVE-2024-28593.txt"},{"reference_url":"https://github.com/advisories/GHSA-f6mh-79vh-2hv7","reference_id":"GHSA-f6mh-79vh-2hv7","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f6mh-79vh-2hv7"},{"reference_url":"https://medium.com/%40lamscun/how-do-i-change-htmli-from-low-to-critical-your-email-box-is-safe-e7171efd88fe","reference_id":"how-do-i-change-htmli-from-low-to-critical-your-email-box-is-safe-e7171efd88fe","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-25T16:47:10Z/"}],"url":"https://medium.com/%40lamscun/how-do-i-change-htmli-from-low-to-critical-your-email-box-is-safe-e7171efd88fe"},{"reference_url":"https://docs.moodle.org/403/en/Using_Chat","reference_id":"Using_Chat","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-25T16:47:10Z/"}],"url":"https://docs.moodle.org/403/en/Using_Chat"}],"fixed_packages":[],"aliases":["CVE-2024-28593","GHSA-f6mh-79vh-2hv7"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mm87-9trq-ykca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/32291?format=json","vulnerability_id":"VCID-mnm9-ngbe-c3ad","summary":"Insufficient checks in a web service made it possible to add comments to the comments block on another user's dashboard when it was not otherwise available (e.g., on their profile page).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25983","reference_id":"","reference_type":"","scores":[{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47741","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47605","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47745","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47761","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25983"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/4cae44dd0e9a7da47d08d9b75e0ebba0e4b422f4","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/4cae44dd0e9a7da47d08d9b75e0ebba0e4b422f4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25983","reference_id":"CVE-2024-25983","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25983"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=455641","reference_id":"discuss.php?d=455641","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=455641"},{"reference_url":"https://github.com/advisories/GHSA-9r26-5w88-qhp9","reference_id":"GHSA-9r26-5w88-qhp9","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9r26-5w88-qhp9"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78300","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78300","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78300"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/","reference_id":"KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264099","reference_id":"show_bug.cgi?id=2264099","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:32:00Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264099"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/29107?format=json","purl":"pkg:composer/moodle/moodle@4.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6"},{"url":"http://public2.vulnerablecode.io/api/packages/29106?format=json","purl":"pkg:composer/moodle/moodle@4.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-396x-a5g1-p3a1"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8evy-5d1w-3fbm"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-tvbe-wwjn-jkby"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3"}],"aliases":["CVE-2024-25983","GHSA-9r26-5w88-qhp9"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mnm9-ngbe-c3ad"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/32375?format=json","vulnerability_id":"VCID-mtan-pjt6-1bca","summary":"Insufficient file size checks resulted in a denial of service risk in the file picker's unzip functionality.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25978","reference_id":"","reference_type":"","scores":[{"value":"0.00292","scoring_system":"epss","scoring_elements":"0.53106","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00292","scoring_system":"epss","scoring_elements":"0.52979","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00292","scoring_system":"epss","scoring_elements":"0.53108","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00292","scoring_system":"epss","scoring_elements":"0.53123","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-25978"},{"reference_url":"https://github.com/moodle/moodle/commit/9ba14233597480fb78c04d531050c090de4e60a2","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/9ba14233597480fb78c04d531050c090de4e60a2"},{"reference_url":"https://github.com/moodle/moodle/commit/a73e0ac76d77b67602f91bb211962813d60bc573","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/a73e0ac76d77b67602f91bb211962813d60bc573"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25978","reference_id":"CVE-2024-25978","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25978"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=455634","reference_id":"discuss.php?d=455634","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=455634"},{"reference_url":"https://github.com/advisories/GHSA-487g-3m3v-hjhq","reference_id":"GHSA-487g-3m3v-hjhq","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-487g-3m3v-hjhq"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-74641","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-74641","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-74641"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/","reference_id":"KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXGBYJ43BUEBUAQZU3DT5I5A3YLF47CB/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264074","reference_id":"show_bug.cgi?id=2264074","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:09:44Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264074"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/29107?format=json","purl":"pkg:composer/moodle/moodle@4.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.6"},{"url":"http://public2.vulnerablecode.io/api/packages/29106?format=json","purl":"pkg:composer/moodle/moodle@4.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-396x-a5g1-p3a1"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8evy-5d1w-3fbm"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-tvbe-wwjn-jkby"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.3"}],"aliases":["CVE-2024-25978","GHSA-487g-3m3v-hjhq"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mtan-pjt6-1bca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31792?format=json","vulnerability_id":"VCID-ndgr-yj2x-tbcr","summary":"To address a cache poisoning risk in Moodle, additional validation for local storage was required.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81718","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"6.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81718"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43428","reference_id":"","reference_type":"","scores":[{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18462","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18624","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.1862","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18642","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43428"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"6.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43428","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"6.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43428"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461196","reference_id":"discuss.php?d=461196","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"6.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:01Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461196"},{"reference_url":"https://github.com/advisories/GHSA-2r9m-wg35-rfvc","reference_id":"GHSA-2r9m-wg35-rfvc","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-2r9m-wg35-rfvc"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304256","reference_id":"show_bug.cgi?id=2304256","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"6.0","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-07T14:41:01Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304256"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43428","GHSA-2r9m-wg35-rfvc"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"6.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ndgr-yj2x-tbcr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70854?format=json","vulnerability_id":"VCID-nsvy-6gvu-wqe1","summary":"A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits could allow specially crafted formulas to consume excessive server resources. An authenticated user could abuse this behavior to degrade performance or cause service interruption.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-26047","reference_id":"","reference_type":"","scores":[{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26334","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26136","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26337","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26349","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-26047"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/8683b4a04939332e353cad1be51222930dc40b2c","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/8683b4a04939332e353cad1be51222930dc40b2c"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=473316","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=473316"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-26047","reference_id":"CVE-2026-26047","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T19:29:50Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-26047"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-26047","reference_id":"CVE-2026-26047","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-26047"},{"reference_url":"https://github.com/advisories/GHSA-cg8j-5cr2-568q","reference_id":"GHSA-cg8j-5cr2-568q","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cg8j-5cr2-568q"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2440905","reference_id":"show_bug.cgi?id=2440905","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T19:29:50Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2440905"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/39494?format=json","purl":"pkg:composer/moodle/moodle@4.5.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.9"},{"url":"http://public2.vulnerablecode.io/api/packages/39493?format=json","purl":"pkg:composer/moodle/moodle@5.0.5","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/39495?format=json","purl":"pkg:composer/moodle/moodle@5.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.2"}],"aliases":["CVE-2026-26047","GHSA-cg8j-5cr2-568q"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nsvy-6gvu-wqe1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37596?format=json","vulnerability_id":"VCID-nw5a-bxbt-vbg5","summary":"The cURL wrapper in Moodle retained the original request headers when following redirects, so HTTP authorization header information could be unintentionally sent in requests to redirect URLs.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38275","reference_id":"","reference_type":"","scores":[{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73854","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73853","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73764","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00759","scoring_system":"epss","scoring_elements":"0.73839","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-38275"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/0df3c5837a592e6663c4d531ff6a1f776bc2f785","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/0df3c5837a592e6663c4d531ff6a1f776bc2f785"},{"reference_url":"https://github.com/moodle/moodle/commit/3e38c84315a7991ce5ef5f241f5e873b5ca24f01","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/3e38c84315a7991ce5ef5f241f5e873b5ca24f01"},{"reference_url":"https://github.com/moodle/moodle/commit/836b2c23a210317d130017d77bb64e3b510869a9","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/836b2c23a210317d130017d77bb64e3b510869a9"},{"reference_url":"https://github.com/moodle/moodle/commit/f7988538b2208c55f2c40ce4f0815901dc88049b","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/f7988538b2208c55f2c40ce4f0815901dc88049b"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38275","reference_id":"CVE-2024-38275","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38275"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=459500","reference_id":"discuss.php?d=459500","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-02T13:36:09Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=459500"},{"reference_url":"https://github.com/advisories/GHSA-p2cj-86v4-7782","reference_id":"GHSA-p2cj-86v4-7782","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-p2cj-86v4-7782"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/32234?format=json","purl":"pkg:composer/moodle/moodle@4.2.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.8"},{"url":"http://public2.vulnerablecode.io/api/packages/32230?format=json","purl":"pkg:composer/moodle/moodle@4.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/32232?format=json","purl":"pkg:composer/moodle/moodle@4.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-q51n-px1r-tkh4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.1"}],"aliases":["CVE-2024-38275","GHSA-p2cj-86v4-7782"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nw5a-bxbt-vbg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102718?format=json","vulnerability_id":"VCID-pg53-92qn-67f4","summary":"Moodle exposed the names of hidden groups to users who had permission to create calendar events but not to view hidden groups. This could reveal private or restricted group information.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62400","reference_id":"","reference_type":"","scores":[{"value":"0.00059","scoring_system":"epss","scoring_elements":"0.18982","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00059","scoring_system":"epss","scoring_elements":"0.18823","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00059","scoring_system":"epss","scoring_elements":"0.18987","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00059","scoring_system":"epss","scoring_elements":"0.19005","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62400"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/0c70d67059658879a71152ea075c74154a627d05","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/0c70d67059658879a71152ea075c74154a627d05"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=470389","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=470389"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-62400","reference_id":"CVE-2025-62400","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:48:02Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-62400"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-62400","reference_id":"CVE-2025-62400","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-62400"},{"reference_url":"https://github.com/advisories/GHSA-422v-w6c5-vq42","reference_id":"GHSA-422v-w6c5-vq42","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-422v-w6c5-vq42"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2404433","reference_id":"show_bug.cgi?id=2404433","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:48:02Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2404433"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/34731?format=json","purl":"pkg:composer/moodle/moodle@4.4.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11"},{"url":"http://public2.vulnerablecode.io/api/packages/34729?format=json","purl":"pkg:composer/moodle/moodle@4.5.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7"},{"url":"http://public2.vulnerablecode.io/api/packages/34727?format=json","purl":"pkg:composer/moodle/moodle@5.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3"}],"aliases":["CVE-2025-62400","GHSA-422v-w6c5-vq42"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pg53-92qn-67f4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49413?format=json","vulnerability_id":"VCID-qm72-ebb5-67cr","summary":"ID numbers displayed in the lesson overview report required additional sanitizing to prevent a stored XSS risk.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81062","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81062"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34000","reference_id":"","reference_type":"","scores":[{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51679","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.5182","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51805","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51808","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34000"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/4c966677de06bff56d46d55c419049f78e70f017","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/4c966677de06bff56d46d55c419049f78e70f017"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34000","reference_id":"CVE-2024-34000","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34000"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458388","reference_id":"discuss.php?d=458388","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-07T16:24:48Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458388"},{"reference_url":"https://github.com/advisories/GHSA-8qwh-4vwv-7c5m","reference_id":"GHSA-8qwh-4vwv-7c5m","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8qwh-4vwv-7c5m"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34000","GHSA-8qwh-4vwv-7c5m"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qm72-ebb5-67cr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31379?format=json","vulnerability_id":"VCID-rdtm-s21h-87az","summary":"A flaw was found in moodle. H5P error messages require additional sanitizing to prevent a reflected cross-site scripting (XSS) risk.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43439","reference_id":"","reference_type":"","scores":[{"value":"0.0129","scoring_system":"epss","scoring_elements":"0.80072","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0129","scoring_system":"epss","scoring_elements":"0.80141","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0129","scoring_system":"epss","scoring_elements":"0.8015","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0129","scoring_system":"epss","scoring_elements":"0.80135","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43439"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/c7d9026715a107ee16b9f9b2134ed4e6f667af99","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/c7d9026715a107ee16b9f9b2134ed4e6f667af99"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43439","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43439"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461209","reference_id":"discuss.php?d=461209","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:50:51Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461209"},{"reference_url":"https://github.com/advisories/GHSA-hjgc-jxjc-8v9j","reference_id":"GHSA-hjgc-jxjc-8v9j","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-hjgc-jxjc-8v9j"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304268","reference_id":"show_bug.cgi?id=2304268","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:50:51Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304268"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43439","GHSA-hjgc-jxjc-8v9j"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rdtm-s21h-87az"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137991?format=json","vulnerability_id":"VCID-s8bc-98ph-nbh5","summary":"An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78215","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78215"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-35133","reference_id":"","reference_type":"","scores":[{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60538","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60645","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60654","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60643","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-35133"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-35133","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-35133"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/","reference_id":"7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=447831","reference_id":"discuss.php?d=447831","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=447831"},{"reference_url":"https://github.com/advisories/GHSA-xxp4-mf4h-6cwm","reference_id":"GHSA-xxp4-mf4h-6cwm","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-xxp4-mf4h-6cwm"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/","reference_id":"I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2214373","reference_id":"show_bug.cgi?id=2214373","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-04-19T20:51:45Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2214373"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381598?format=json","purl":"pkg:composer/moodle/moodle@4.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-35xa-1mjs-a3au"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-59gr-d6p5-u7fv"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67af-4zk5-sfb2"},{"vulnerability":"VCID-6h6h-ny96-x7hu"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-9u8e-pp4p-nqht"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-g8bf-eeaa-hygf"},{"vulnerability":"VCID-gtz8-utju-qfah"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kegp-rnfw-83b4"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-t8ha-9bhp-fbbq"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-u1ke-y4et-6ye8"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-uuqh-tq51-tbex"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wf3q-rpbt-pfg7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1"}],"aliases":["CVE-2023-35133","GHSA-xxp4-mf4h-6cwm"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s8bc-98ph-nbh5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133596?format=json","vulnerability_id":"VCID-t8ha-9bhp-fbbq","summary":"H5P metadata automatically populated the author with the user's username, which could be sensitive information.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5545","reference_id":"","reference_type":"","scores":[{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.51589","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.5146","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.51591","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00277","scoring_system":"epss","scoring_elements":"0.51603","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5545"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/100ac7c6467a7de2c05713a0a924984ff1593d53","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/100ac7c6467a7de2c05713a0a924984ff1593d53"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5545","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5545"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451586","reference_id":"discuss.php?d=451586","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:58:29Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451586"},{"reference_url":"https://github.com/advisories/GHSA-26fg-v32r-h663","reference_id":"GHSA-26fg-v32r-h663","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-26fg-v32r-h663"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78820","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78820","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:58:29Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-78820"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243444","reference_id":"show_bug.cgi?id=2243444","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-22T19:58:29Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243444"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5545","GHSA-26fg-v32r-h663"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t8ha-9bhp-fbbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102951?format=json","vulnerability_id":"VCID-tr6w-mqxr-vueh","summary":"Moodle’s mobile and web service authentication endpoints did not sufficiently restrict repeated password attempts, making them susceptible to brute-force attacks.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62399","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25369","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25169","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25367","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25384","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62399"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/e4d02567c922c537086de9f59f063ca073552a3a","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/e4d02567c922c537086de9f59f063ca073552a3a"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=470388","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://moodle.org/mod/forum/discuss.php?d=470388"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-62399","reference_id":"CVE-2025-62399","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:51:39Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-62399"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-62399","reference_id":"CVE-2025-62399","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-62399"},{"reference_url":"https://github.com/advisories/GHSA-m58f-9pvv-8mp2","reference_id":"GHSA-m58f-9pvv-8mp2","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-m58f-9pvv-8mp2"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2404432","reference_id":"show_bug.cgi?id=2404432","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-23T14:51:39Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2404432"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/34731?format=json","purl":"pkg:composer/moodle/moodle@4.4.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.11"},{"url":"http://public2.vulnerablecode.io/api/packages/34729?format=json","purl":"pkg:composer/moodle/moodle@4.5.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.7"},{"url":"http://public2.vulnerablecode.io/api/packages/34727?format=json","purl":"pkg:composer/moodle/moodle@5.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-x9xg-ujre-3ub9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.3"}],"aliases":["CVE-2025-62399","GHSA-m58f-9pvv-8mp2"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tr6w-mqxr-vueh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133812?format=json","vulnerability_id":"VCID-u1ke-y4et-6ye8","summary":"Separate Groups mode restrictions were not honoured in the forum summary report, which would display users from other groups.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5551","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22379","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22195","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22401","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5551"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/2bb6c551cf2e7be29857db35388911b8179394b0","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/2bb6c551cf2e7be29857db35388911b8179394b0"},{"reference_url":"https://github.com/moodle/moodle/commit/6de45d2c9f7dd7b24210ab0310c296366a82986a","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/6de45d2c9f7dd7b24210ab0310c296366a82986a"},{"reference_url":"https://github.com/moodle/moodle/commit/b91feb0b2328cdda2561d68b8dfe2a129190bc85","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/b91feb0b2328cdda2561d68b8dfe2a129190bc85"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5551","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5551"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451592","reference_id":"discuss.php?d=451592","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:23:28Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451592"},{"reference_url":"https://github.com/advisories/GHSA-jr83-8x65-xcr5","reference_id":"GHSA-jr83-8x65-xcr5","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-jr83-8x65-xcr5"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79310","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79310","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:23:28Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79310"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243453","reference_id":"show_bug.cgi?id=2243453","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-04T13:23:28Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243453"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5551","GHSA-jr83-8x65-xcr5"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u1ke-y4et-6ye8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31588?format=json","vulnerability_id":"VCID-ud6t-af1d-2yfh","summary":"A flaw was found in moodle. When creating an export of site administration presets, some sensitive secrets and keys are not being excluded from the export, which could result in them unintentionally being leaked if the presets are shared with a third party.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79373","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"1.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79373"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43427","reference_id":"","reference_type":"","scores":[{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70818","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70908","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70918","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70921","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43427"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"1.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43427","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"1.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43427"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461195","reference_id":"discuss.php?d=461195","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"1.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:02:44Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461195"},{"reference_url":"https://github.com/advisories/GHSA-vpq5-56jj-vf2m","reference_id":"GHSA-vpq5-56jj-vf2m","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vpq5-56jj-vf2m"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304255","reference_id":"show_bug.cgi?id=2304255","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"1.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T15:02:44Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304255"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43427","GHSA-vpq5-56jj-vf2m"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ud6t-af1d-2yfh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133821?format=json","vulnerability_id":"VCID-uuqh-tq51-tbex","summary":"A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5539","reference_id":"","reference_type":"","scores":[{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84838","published_at":"2026-06-14T12:55:00Z"},{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84785","published_at":"2026-06-11T12:55:00Z"},{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84837","published_at":"2026-06-12T12:55:00Z"},{"value":"0.022","scoring_system":"epss","scoring_elements":"0.84846","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5539"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/ba974a4add981743b5a37c5bcc4714c62f6052ce","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/ba974a4add981743b5a37c5bcc4714c62f6052ce"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5539","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5539"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451580","reference_id":"discuss.php?d=451580","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-03T18:23:49Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451580"},{"reference_url":"https://github.com/advisories/GHSA-3xxm-3g3c-w579","reference_id":"GHSA-3xxm-3g3c-w579","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-3xxm-3g3c-w579"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79408","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79408","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-03T18:23:49Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79408"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243352","reference_id":"show_bug.cgi?id=2243352","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-03T18:23:49Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243352"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5539","GHSA-3xxm-3g3c-w579"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uuqh-tq51-tbex"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31653?format=json","vulnerability_id":"VCID-vbmp-pabj-r3es","summary":"A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned by the report.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43438","reference_id":"","reference_type":"","scores":[{"value":"0.00287","scoring_system":"epss","scoring_elements":"0.52511","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00287","scoring_system":"epss","scoring_elements":"0.52632","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00287","scoring_system":"epss","scoring_elements":"0.5265","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00287","scoring_system":"epss","scoring_elements":"0.52638","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43438"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43438","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43438"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461208","reference_id":"discuss.php?d=461208","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:31Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461208"},{"reference_url":"https://github.com/advisories/GHSA-p9cx-f595-h79h","reference_id":"GHSA-p9cx-f595-h79h","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-p9cx-f595-h79h"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304267","reference_id":"show_bug.cgi?id=2304267","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:31Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304267"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43438","GHSA-p9cx-f595-h79h"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vbmp-pabj-r3es"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31327?format=json","vulnerability_id":"VCID-vfa1-gfnu-gqgb","summary":"A flaw was found in moodle. Insufficient capability checks make it possible for users with access to restore glossaries in courses to restore them into the global site glossary.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64984","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64984"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43435","reference_id":"","reference_type":"","scores":[{"value":"0.00529","scoring_system":"epss","scoring_elements":"0.67612","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00529","scoring_system":"epss","scoring_elements":"0.67701","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00529","scoring_system":"epss","scoring_elements":"0.67711","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00529","scoring_system":"epss","scoring_elements":"0.67714","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43435"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43435","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43435"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461205","reference_id":"discuss.php?d=461205","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:57:03Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461205"},{"reference_url":"https://github.com/advisories/GHSA-4gq2-x5w4-7hp8","reference_id":"GHSA-4gq2-x5w4-7hp8","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-4gq2-x5w4-7hp8"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304263","reference_id":"show_bug.cgi?id=2304263","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-12T14:57:03Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304263"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43435","GHSA-4gq2-x5w4-7hp8"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vfa1-gfnu-gqgb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49363?format=json","vulnerability_id":"VCID-vtfd-afct-zkc5","summary":"The site log report required additional encoding of event descriptions to ensure any HTML in the content is displayed in plaintext instead of being rendered.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80585","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80585"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34006","reference_id":"","reference_type":"","scores":[{"value":"0.00424","scoring_system":"epss","scoring_elements":"0.62611","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00424","scoring_system":"epss","scoring_elements":"0.62724","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00424","scoring_system":"epss","scoring_elements":"0.62719","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00424","scoring_system":"epss","scoring_elements":"0.62712","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34006"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/cd85e090f3feb06e6eff65d1499a67353d82d3cb","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/cd85e090f3feb06e6eff65d1499a67353d82d3cb"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34006","reference_id":"CVE-2024-34006","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34006"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458395","reference_id":"discuss.php?d=458395","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-03T15:10:13Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458395"},{"reference_url":"https://github.com/advisories/GHSA-vvh5-7v3m-j3mj","reference_id":"GHSA-vvh5-7v3m-j3mj","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vvh5-7v3m-j3mj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34006","GHSA-vvh5-7v3m-j3mj"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vtfd-afct-zkc5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31994?format=json","vulnerability_id":"VCID-w2zm-rxx4-xqcy","summary":"A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43431","reference_id":"","reference_type":"","scores":[{"value":"0.00308","scoring_system":"epss","scoring_elements":"0.54421","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00308","scoring_system":"epss","scoring_elements":"0.54546","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00308","scoring_system":"epss","scoring_elements":"0.54562","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00308","scoring_system":"epss","scoring_elements":"0.54547","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43431"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43431","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43431"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461199","reference_id":"discuss.php?d=461199","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:53Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461199"},{"reference_url":"https://github.com/advisories/GHSA-wwjf-gwrv-wh45","reference_id":"GHSA-wwjf-gwrv-wh45","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wwjf-gwrv-wh45"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304259","reference_id":"show_bug.cgi?id=2304259","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:40:53Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304259"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43431","GHSA-wwjf-gwrv-wh45"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w2zm-rxx4-xqcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49775?format=json","vulnerability_id":"VCID-w5kh-x8en-yke7","summary":"Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF risk.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81059","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81059"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34008","reference_id":"","reference_type":"","scores":[{"value":"0.00361","scoring_system":"epss","scoring_elements":"0.58734","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00361","scoring_system":"epss","scoring_elements":"0.58619","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00361","scoring_system":"epss","scoring_elements":"0.58746","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00361","scoring_system":"epss","scoring_elements":"0.58731","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34008"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/498a766263743ee649f6874e440a94517a077e2e","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/498a766263743ee649f6874e440a94517a077e2e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34008","reference_id":"CVE-2024-34008","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34008"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458397","reference_id":"discuss.php?d=458397","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N"},{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-05T19:22:27Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458397"},{"reference_url":"https://github.com/advisories/GHSA-68x5-4jg5-gjgg","reference_id":"GHSA-68x5-4jg5-gjgg","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-68x5-4jg5-gjgg"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34008","GHSA-68x5-4jg5-gjgg"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w5kh-x8en-yke7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/133352?format=json","vulnerability_id":"VCID-wf3q-rpbt-pfg7","summary":"The CSV grade import method contained an XSS risk for users importing the spreadsheet, if it contained unsafe content.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5541","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33964","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33784","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33963","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33986","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5541"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/f5f6ce375e37da902afb043c6b506129fc433233","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/f5f6ce375e37da902afb043c6b506129fc433233"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5541","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5541"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=451582","reference_id":"discuss.php?d=451582","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T20:18:35Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=451582"},{"reference_url":"https://github.com/advisories/GHSA-28gc-4qq5-8q26","reference_id":"GHSA-28gc-4qq5-8q26","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-28gc-4qq5-8q26"},{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79426","reference_id":"gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79426","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T20:18:35Z/"}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79426"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243437","reference_id":"show_bug.cgi?id=2243437","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-17T20:18:35Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243437"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381216?format=json","purl":"pkg:composer/moodle/moodle@4.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.3"},{"url":"http://public2.vulnerablecode.io/api/packages/381033?format=json","purl":"pkg:composer/moodle/moodle@4.3.0-rc2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.0-rc2"}],"aliases":["CVE-2023-5541","GHSA-28gc-4qq5-8q26"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wf3q-rpbt-pfg7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49615?format=json","vulnerability_id":"VCID-wupv-hcad-4yfs","summary":"Actions in the admin preset tool did not include the necessary token to prevent a CSRF risk.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34001","reference_id":"","reference_type":"","scores":[{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55721","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55843","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55856","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.5584","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34001"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://github.com/moodle/moodle/commit/03e93da556201291e4a345d353a06d08d5d04dd6","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle/commit/03e93da556201291e4a345d353a06d08d5d04dd6"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34001","reference_id":"CVE-2024-34001","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34001"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458389","reference_id":"discuss.php?d=458389","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-01T13:12:28Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458389"},{"reference_url":"https://github.com/advisories/GHSA-gq9f-8rj4-w7jc","reference_id":"GHSA-gq9f-8rj4-w7jc","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-gq9f-8rj4-w7jc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34001","GHSA-gq9f-8rj4-w7jc"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wupv-hcad-4yfs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31807?format=json","vulnerability_id":"VCID-xgmq-ybaw-ckae","summary":"A flaw was found in moodle. A local file may include risks when restoring block backups.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43440","reference_id":"","reference_type":"","scores":[{"value":"0.00334","scoring_system":"epss","scoring_elements":"0.56557","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00334","scoring_system":"epss","scoring_elements":"0.5668","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00334","scoring_system":"epss","scoring_elements":"0.56691","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00334","scoring_system":"epss","scoring_elements":"0.56676","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-43440"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43440","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43440"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=461210","reference_id":"discuss.php?d=461210","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:23:21Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=461210"},{"reference_url":"https://github.com/advisories/GHSA-qrqv-26gf-xgwh","reference_id":"GHSA-qrqv-26gf-xgwh","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qrqv-26gf-xgwh"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304269","reference_id":"show_bug.cgi?id=2304269","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"6.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T14:23:21Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2304269"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372778?format=json","purl":"pkg:composer/moodle/moodle@4.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/372777?format=json","purl":"pkg:composer/moodle/moodle@4.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/372776?format=json","purl":"pkg:composer/moodle/moodle@4.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndsq-chgj-4kcq"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-p6d8-jya8-vfe2"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.2"}],"aliases":["CVE-2024-43440","GHSA-qrqv-26gf-xgwh"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xgmq-ybaw-ckae"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56382?format=json","vulnerability_id":"VCID-xju1-g3ft-gyge","summary":"A vulnerability was found in Moodle. Additional checks are required to ensure users can only access the schedule of a report if they have permission to edit that report.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48901","reference_id":"","reference_type":"","scores":[{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46016","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46009","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.45871","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46023","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48901"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48901","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48901"},{"reference_url":"https://github.com/advisories/GHSA-mg54-p2wj-5ph7","reference_id":"GHSA-mg54-p2wj-5ph7","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mg54-p2wj-5ph7"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318817","reference_id":"show_bug.cgi?id=2318817","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-18T14:55:25Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318817"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372791?format=json","purl":"pkg:composer/moodle/moodle@4.2.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11"},{"url":"http://public2.vulnerablecode.io/api/packages/372792?format=json","purl":"pkg:composer/moodle/moodle@4.3.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/372793?format=json","purl":"pkg:composer/moodle/moodle@4.4.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4"}],"aliases":["CVE-2024-48901","GHSA-mg54-p2wj-5ph7"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xju1-g3ft-gyge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/137712?format=json","vulnerability_id":"VCID-xm3s-de89-d3dr","summary":"Content on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to 3.11.14.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-76683","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-76683"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-35131","reference_id":"","reference_type":"","scores":[{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.76016","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.76095","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.76101","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00892","scoring_system":"epss","scoring_elements":"0.76088","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-35131"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-35131","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-35131"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/","reference_id":"7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7A72KX4WU6GK2CX4TKYFGFASPKOEOJFC/"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=447829","reference_id":"discuss.php?d=447829","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=447829"},{"reference_url":"https://github.com/advisories/GHSA-fwfj-8p36-rc64","reference_id":"GHSA-fwfj-8p36-rc64","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-fwfj-8p36-rc64"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/","reference_id":"I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5QAEAGJ44NVXLAJFJXKARKC45OGEDXT/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2214369","reference_id":"show_bug.cgi?id=2214369","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-16T01:18:00Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2214369"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/381598?format=json","purl":"pkg:composer/moodle/moodle@4.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-352q-17as-77gz"},{"vulnerability":"VCID-35xa-1mjs-a3au"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-59gr-d6p5-u7fv"},{"vulnerability":"VCID-5uk3-pd1j-ykgr"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67af-4zk5-sfb2"},{"vulnerability":"VCID-6h6h-ny96-x7hu"},{"vulnerability":"VCID-7z7h-w68u-1bc7"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-9szm-emq8-gfdf"},{"vulnerability":"VCID-9u8e-pp4p-nqht"},{"vulnerability":"VCID-b2xd-3ek1-27b9"},{"vulnerability":"VCID-b53y-qvcd-9bc2"},{"vulnerability":"VCID-b9r4-vfvf-r3cx"},{"vulnerability":"VCID-bhnn-ae5z-53cm"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-epz3-rnb8-bybr"},{"vulnerability":"VCID-ez7r-y64f-dbbx"},{"vulnerability":"VCID-g8bf-eeaa-hygf"},{"vulnerability":"VCID-gtz8-utju-qfah"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jejy-353t-x3de"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kegp-rnfw-83b4"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-mm87-9trq-ykca"},{"vulnerability":"VCID-mnm9-ngbe-c3ad"},{"vulnerability":"VCID-mtan-pjt6-1bca"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-qm72-ebb5-67cr"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-t8ha-9bhp-fbbq"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-u1ke-y4et-6ye8"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-uuqh-tq51-tbex"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-vtfd-afct-zkc5"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w5kh-x8en-yke7"},{"vulnerability":"VCID-wf3q-rpbt-pfg7"},{"vulnerability":"VCID-wupv-hcad-4yfs"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xzfd-upm6-6fa8"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.1"}],"aliases":["CVE-2023-35131","GHSA-fwfj-8p36-rc64"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xm3s-de89-d3dr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49311?format=json","vulnerability_id":"VCID-xzfd-upm6-6fa8","summary":"In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include.","references":[{"reference_url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81135","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81135"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34002","reference_id":"","reference_type":"","scores":[{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.63955","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.63838","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.63953","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00445","scoring_system":"epss","scoring_elements":"0.6394","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34002"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34002","reference_id":"CVE-2024-34002","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34002"},{"reference_url":"https://moodle.org/mod/forum/discuss.php?d=458390","reference_id":"discuss.php?d=458390","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:56:11Z/"}],"url":"https://moodle.org/mod/forum/discuss.php?d=458390"},{"reference_url":"https://github.com/advisories/GHSA-mm9p-xwfm-3fqf","reference_id":"GHSA-mm9p-xwfm-3fqf","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mm9p-xwfm-3fqf"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31870?format=json","purl":"pkg:composer/moodle/moodle@4.2.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-zcea-b6q9-6fb9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31868?format=json","purl":"pkg:composer/moodle/moodle@4.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-24a4-k6sm-zfey"},{"vulnerability":"VCID-2ua4-y1mx-t7f4"},{"vulnerability":"VCID-364m-hhsz-dfcs"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3ee8-byud-7kab"},{"vulnerability":"VCID-3v15-csmz-sfe9"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-575h-xhz7-augs"},{"vulnerability":"VCID-5zy2-a2hw-tuba"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8w1a-ft6h-g7bt"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-9fr5-4a3g-pbga"},{"vulnerability":"VCID-bjdy-pxgn-hkcx"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c6hn-kyf7-g3e4"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-catf-58r7-87h5"},{"vulnerability":"VCID-cnqj-gehg-xuhk"},{"vulnerability":"VCID-e6pf-zcvz-mqfr"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-j9sx-pf51-buhe"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-k5ku-5n57-w7e3"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-meau-pbrc-5ffv"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-ndgr-yj2x-tbcr"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw5a-bxbt-vbg5"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-rdtm-s21h-87az"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-ud6t-af1d-2yfh"},{"vulnerability":"VCID-vbmp-pabj-r3es"},{"vulnerability":"VCID-vfa1-gfnu-gqgb"},{"vulnerability":"VCID-w2zm-rxx4-xqcy"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xgmq-ybaw-ckae"},{"vulnerability":"VCID-xju1-g3ft-gyge"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zcea-b6q9-6fb9"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.4"}],"aliases":["CVE-2024-34002","GHSA-mm9p-xwfm-3fqf"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xzfd-upm6-6fa8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56384?format=json","vulnerability_id":"VCID-zcea-b6q9-6fb9","summary":"A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48898","reference_id":"","reference_type":"","scores":[{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46016","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46009","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.45871","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.46023","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-48898"},{"reference_url":"https://github.com/moodle/moodle","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/moodle/moodle"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48898","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-48898"},{"reference_url":"https://github.com/advisories/GHSA-fjq9-452g-jg3q","reference_id":"GHSA-fjq9-452g-jg3q","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-fjq9-452g-jg3q"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318820","reference_id":"show_bug.cgi?id=2318820","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-18T14:56:14Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318820"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/372791?format=json","purl":"pkg:composer/moodle/moodle@4.2.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-tr6w-mqxr-vueh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.11"},{"url":"http://public2.vulnerablecode.io/api/packages/372792?format=json","purl":"pkg:composer/moodle/moodle@4.3.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1svf-1dtz-3qey"},{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/372793?format=json","purl":"pkg:composer/moodle/moodle@4.4.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dr4-hds3-ckbr"},{"vulnerability":"VCID-3s11-9e4p-pygy"},{"vulnerability":"VCID-43r9-m1xz-5qge"},{"vulnerability":"VCID-57uf-tz1x-akdt"},{"vulnerability":"VCID-67tn-z6kv-vybp"},{"vulnerability":"VCID-7a6m-m4t2-5ydp"},{"vulnerability":"VCID-7zqn-5pyf-pyg9"},{"vulnerability":"VCID-82cj-8rk2-kygn"},{"vulnerability":"VCID-87yg-v5af-mfd4"},{"vulnerability":"VCID-8ydw-ymjw-4qhd"},{"vulnerability":"VCID-95fs-szzk-c3h5"},{"vulnerability":"VCID-bn3p-ccnj-3ubw"},{"vulnerability":"VCID-c7uy-k6wn-s3f9"},{"vulnerability":"VCID-cra3-6x3q-vkap"},{"vulnerability":"VCID-eaej-5e2e-yfcr"},{"vulnerability":"VCID-ebae-b6eb-s7fr"},{"vulnerability":"VCID-fsuz-rgpw-8qd4"},{"vulnerability":"VCID-gapa-a9xy-w3be"},{"vulnerability":"VCID-hh6z-2319-83g4"},{"vulnerability":"VCID-j897-5zfk-rbhk"},{"vulnerability":"VCID-jn27-7e3d-1uc6"},{"vulnerability":"VCID-kymv-5vap-7qf7"},{"vulnerability":"VCID-n5hx-mc7q-sua6"},{"vulnerability":"VCID-nsvy-6gvu-wqe1"},{"vulnerability":"VCID-nw7f-9kxh-dfer"},{"vulnerability":"VCID-pg53-92qn-67f4"},{"vulnerability":"VCID-pv24-2amy-4yb9"},{"vulnerability":"VCID-s97q-jcmh-ukdh"},{"vulnerability":"VCID-sja2-g5vp-tqev"},{"vulnerability":"VCID-tr6w-mqxr-vueh"},{"vulnerability":"VCID-uc4c-cw57-tyfp"},{"vulnerability":"VCID-w84c-jzp6-zkee"},{"vulnerability":"VCID-wr3n-bk11-a3bj"},{"vulnerability":"VCID-wsj3-x2v5-y7gc"},{"vulnerability":"VCID-x3bb-7vq7-aqaa"},{"vulnerability":"VCID-x9xg-ujre-3ub9"},{"vulnerability":"VCID-xkgj-r2v3-k3gt"},{"vulnerability":"VCID-zkc5-3squ-puep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.4.4"}],"aliases":["CVE-2024-48898","GHSA-fjq9-452g-jg3q"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zcea-b6q9-6fb9"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.2.0"}