|
288241
|
- |
|
moodle
|
moodle
|
Multiple cross-site scripting (XSS) vulnerabilities in admin/tool/task/scheduledtasks.php in Moodle 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via vectors that t…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3550
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288242
|
- |
|
moodle
|
moodle
|
Cross-site scripting (XSS) vulnerability in the get_description function in lib/classes/event/user_login_failed.php in Moodle 2.7.x before 2.7.1 allows remote attackers to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3549
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288243
|
- |
|
moodle
|
moodle
|
Multiple cross-site scripting (XSS) vulnerabilities in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3548
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288244
|
- |
|
moodle
|
moodle
|
Multiple cross-site scripting (XSS) vulnerabilities in badges/renderer.php in Moodle 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3547
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288245
|
- |
|
moodle
|
moodle
|
Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 does not enforce certain capability requirements in (1) notes/index.php and (2) user/edit.ph…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3546
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288246
|
- |
|
moodle
|
moodle
|
Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote authenticated users to execute arbitrary code via a calculated question in a q…
|
CWE-94
Code Injection
|
CVE-2014-3545
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288247
|
- |
|
moodle
|
moodle
|
Cross-site scripting (XSS) vulnerability in user/profile.php in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote authenticated …
|
CWE-79
Cross-site Scripting
|
CVE-2014-3544
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288248
|
- |
|
moodle
|
moodle
|
mod/imscp/locallib.php in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote attackers to read arbitrary files via a package with…
|
CWE-200
Information Exposure
|
CVE-2014-3543
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288249
|
- |
|
moodle
|
moodle
|
mod/lti/service.php in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote attackers to read arbitrary files via an XML external e…
|
CWE-200
Information Exposure
|
CVE-2014-3542
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288250
|
- |
|
moodle
|
moodle
|
The Repositories component in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote attackers to conduct PHP object injection attack…
|
CWE-94
Code Injection
|
CVE-2014-3541
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
