Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/moodle/moodle@4.5.9
Typecomposer
Namespacemoodle
Namemoodle
Version4.5.9
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version5.0.5
Latest_non_vulnerable_version5.1.2
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-82cj-8rk2-kygn
vulnerability_id VCID-82cj-8rk2-kygn
summary A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files were not properly validated during processing. If a malicious backup file is restored, it could lead to unintended execution of server-side code. Since restore capabilities are typically available to privileged users, exploitation requires authenticated access. Successful exploitation could result in full compromise of the Moodle server.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-26045
reference_id
reference_type
scores
0
value 0.00113
scoring_system epss
scoring_elements 0.2953
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-26045
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/566054ba11f609a6d48d09b32e85d435d49927da
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/566054ba11f609a6d48d09b32e85d435d49927da
3
reference_url https://moodle.org/mod/forum/discuss.php?d=473314
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=473314
4
reference_url https://access.redhat.com/security/cve/CVE-2026-26045
reference_id CVE-2026-26045
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-24T04:56:33Z/
url https://access.redhat.com/security/cve/CVE-2026-26045
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-26045
reference_id CVE-2026-26045
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-26045
6
reference_url https://github.com/advisories/GHSA-ggxq-2mg9-8966
reference_id GHSA-ggxq-2mg9-8966
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-ggxq-2mg9-8966
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2440901
reference_id show_bug.cgi?id=2440901
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-24T04:56:33Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2440901
fixed_packages
0
url pkg:composer/moodle/moodle@4.5.9
purl pkg:composer/moodle/moodle@4.5.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.9
1
url pkg:composer/moodle/moodle@5.0.5
purl pkg:composer/moodle/moodle@5.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.5
2
url pkg:composer/moodle/moodle@5.1.2
purl pkg:composer/moodle/moodle@5.1.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.2
aliases CVE-2026-26045, GHSA-ggxq-2mg9-8966
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-82cj-8rk2-kygn
1
url VCID-nsvy-6gvu-wqe1
vulnerability_id VCID-nsvy-6gvu-wqe1
summary A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits could allow specially crafted formulas to consume excessive server resources. An authenticated user could abuse this behavior to degrade performance or cause service interruption.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-26047
reference_id
reference_type
scores
0
value 0.00094
scoring_system epss
scoring_elements 0.26136
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-26047
1
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
2
reference_url https://github.com/moodle/moodle/commit/8683b4a04939332e353cad1be51222930dc40b2c
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/8683b4a04939332e353cad1be51222930dc40b2c
3
reference_url https://moodle.org/mod/forum/discuss.php?d=473316
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=473316
4
reference_url https://access.redhat.com/security/cve/CVE-2026-26047
reference_id CVE-2026-26047
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T19:29:50Z/
url https://access.redhat.com/security/cve/CVE-2026-26047
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-26047
reference_id CVE-2026-26047
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-26047
6
reference_url https://github.com/advisories/GHSA-cg8j-5cr2-568q
reference_id GHSA-cg8j-5cr2-568q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cg8j-5cr2-568q
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2440905
reference_id show_bug.cgi?id=2440905
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-23T19:29:50Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2440905
fixed_packages
0
url pkg:composer/moodle/moodle@4.5.9
purl pkg:composer/moodle/moodle@4.5.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.9
1
url pkg:composer/moodle/moodle@5.0.5
purl pkg:composer/moodle/moodle@5.0.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.0.5
2
url pkg:composer/moodle/moodle@5.1.2
purl pkg:composer/moodle/moodle@5.1.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@5.1.2
aliases CVE-2026-26047, GHSA-cg8j-5cr2-568q
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nsvy-6gvu-wqe1
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@4.5.9