Vulnerabilities > Moodle > Moodle > 3.3.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-09-17 | CVE-2018-14631 | Cross-site Scripting vulnerability in Moodle moodle before versions 3.5.2, 3.4.5, 3.3.8 is vulnerable to a boost theme - blog search GET parameter insufficiently filtered. | 4.3 |
2018-09-17 | CVE-2018-14630 | Code Injection vulnerability in Moodle moodle before versions 3.5.2, 3.4.5, 3.3.8, 3.1.14 is vulnerable to an XML import of ddwtos could lead to intentional remote code execution. | 6.5 |
2018-07-10 | CVE-2018-10891 | Unspecified vulnerability in Moodle A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. | 7.5 |
2018-07-10 | CVE-2018-10890 | Information Exposure vulnerability in Moodle A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. | 5.0 |
2018-07-10 | CVE-2018-10889 | Information Exposure Through Log Files vulnerability in Moodle A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7. | 5.0 |