Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5269) CVE-2015-5269 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5336) CVE-2015-5336 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5337) CVE-2015-5337 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-0725) CVE-2016-0725 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2152) CVE-2016-2152 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2153) CVE-2016-2153 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9188) CVE-2016-9188 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-2578) CVE-2017-2578 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-2644) CVE-2017-2644 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-2645) CVE-2017-2645 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7298) CVE-2017-7298 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12156) CVE-2017-12156 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1045) CVE-2018-1045 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1136) CVE-2018-1136 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-14631) CVE-2018-14631 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-3808) CVE-2019-3808 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14881) CVE-2019-14881 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14884) CVE-2019-14884 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-18210) CVE-2019-18210 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1691) CVE-2020-1691 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14320) CVE-2020-14320 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-25627) CVE-2020-25627 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-25628) CVE-2020-25628 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-25631) CVE-2020-25631 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-25702) CVE-2020-25702 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20183) CVE-2021-20183 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20186) CVE-2021-20186 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20279) CVE-2021-20279 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20280) CVE-2021-20280 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27131) CVE-2021-27131 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32244) CVE-2021-32244 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32475) CVE-2021-32475 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32478) CVE-2021-32478 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36398) CVE-2021-36398 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36399) CVE-2021-36399 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36401) CVE-2021-36401 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36568) CVE-2021-36568 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-43558) CVE-2021-43558 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-30596) CVE-2022-30596 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35651) CVE-2022-35651 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35653) CVE-2022-35653 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-45150) CVE-2022-45150 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-45151) CVE-2022-45151 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5541) CVE-2023-5541 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5544) CVE-2023-5544 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5546) CVE-2023-5546 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5547) CVE-2023-5547 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-23921) CVE-2023-23921 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-23922) CVE-2023-23922 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-28331) CVE-2023-28331 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-28332) CVE-2023-28332 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-35131) CVE-2023-35131 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-46858) CVE-2023-46858 CWE-707 CWE-707 Medium Moodle Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-5013) CVE-2016-5013 CWE-138 CWE-138 Medium Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-4305) CVE-2009-4305 CWE-138 CWE-138 Medium Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-4292) CVE-2011-4292 CWE-138 CWE-138 Medium Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-2363) CVE-2012-2363 CWE-138 CWE-138 Medium Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-3395) CVE-2012-3395 CWE-138 CWE-138 Medium Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-25700) CVE-2020-25700 CWE-138 CWE-138 Medium Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-35132) CVE-2023-35132 CWE-138 CWE-138 Medium Moodle Improper Privilege Management Vulnerability (CVE-2017-7489) CVE-2017-7489 CWE-269 CWE-269 Medium Moodle Improper Privilege Management Vulnerability (CVE-2017-7532) CVE-2017-7532 CWE-269 CWE-269 Medium Moodle Improper Privilege Management Vulnerability (CVE-2018-1134) CVE-2018-1134 CWE-269 CWE-269 Medium Moodle Improper Privilege Management Vulnerability (CVE-2023-5549) CVE-2023-5549 CWE-269 CWE-269 Medium Moodle Improper Validation of Integrity Check Value Vulnerability (CVE-2021-20184) CVE-2021-20184 CWE-354 CWE-354 Medium Moodle Incorrect Authorization Vulnerability (CVE-2020-25701) CVE-2020-25701 CWE-863 CWE-863 Medium Moodle Incorrect Authorization Vulnerability (CVE-2021-20282) CVE-2021-20282 CWE-863 CWE-863 Medium Moodle Incorrect Authorization Vulnerability (CVE-2021-20283) CVE-2021-20283 CWE-863 CWE-863 Medium Moodle Incorrect Authorization Vulnerability (CVE-2021-40692) CVE-2021-40692 CWE-863 CWE-863 Medium Moodle Incorrect Authorization Vulnerability (CVE-2022-0984) CVE-2022-0984 CWE-863 CWE-863 Medium Moodle Incorrect Authorization Vulnerability (CVE-2024-48897) CVE-2024-48897 CWE-863 CWE-863 Medium Moodle Incorrect Authorization Vulnerability (CVE-2024-48901) CVE-2024-48901 CWE-863 CWE-863 Medium Moodle Incorrect Default Permissions Vulnerability (CVE-2012-1157) CVE-2012-1157 CWE-276 CWE-276 Medium Moodle Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-1754) CVE-2020-1754 CWE-732 CWE-732 Medium Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2018-10889) CVE-2018-10889 CWE-532 CWE-532 Medium 1...43444546...107 44 / 107
