Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
BIT-moodle-2025-67857
  • Bitnami/moodle
 Moodle: moodle: data exposure of user identifiers in urls yesterday
  • Fix available
  • Severity - 5.3 (Medium)
BIT-moodle-2025-67856
  • Bitnami/moodle
 Moodle: moodle: privilege escalation via incomplete role checks in badge awarding yesterday
  • Fix available
  • Severity - 9.8 (Critical)
BIT-moodle-2025-67855
  • Bitnami/moodle
 Mooodle: mooodle: information disclosure and script execution via reflected cross-site scripting yesterday
  • Fix available
  • Severity - 6.1 (Medium)
BIT-moodle-2025-67853
  • Bitnami/moodle
 Moodle: moodle: brute-force facilitation due to missing rate limiting in confirmation email service yesterday
  • Fix available
  • Severity - 7.5 (High)
BIT-moodle-2025-67852
  • Bitnami/moodle
 Moodle: moodle: open redirect vulnerability in oauth login flow allows redirection to malicious sites. yesterday
  • Fix available
  • Severity - 6.1 (Medium)
BIT-moodle-2025-67851
  • Bitnami/moodle
 Moodle: moodle: formula injection allows arbitrary formula execution via unescaped data export yesterday
  • Fix available
  • Severity - 7.8 (High)
BIT-moodle-2025-67850
  • Bitnami/moodle
 Moodle: moodle: cross-site scripting vulnerability via inadequate input filtering in formula editor yesterday
  • Fix available
  • Severity - 6.1 (Medium)
BIT-moodle-2025-67849
  • Bitnami/moodle
 Moodle: moodle: cross-site scripting (xss) via improper sanitization of ai prompt responses yesterday
  • Fix available
  • Severity - 6.1 (Medium)
BIT-moodle-2025-67848
  • Bitnami/moodle
 Moodle: moodle: authentication bypass via lti provider allows suspended users to gain unauthorized access. yesterday
  • Fix available
  • Severity - 8.1 (High)
BIT-nginx-ingress-controller-2026-24514
  • Bitnami/nginx-ingress-controller
 ingress-nginx Admission Controller denial of service yesterday
  • Fix available
  • Severity - 6.5 (Medium)
BIT-nginx-ingress-controller-2026-24513
  • Bitnami/nginx-ingress-controller
 ingress-nginx auth-url protection bypass yesterday
  • Fix available
  • Severity - 3.1 (Low)
BIT-nginx-ingress-controller-2026-24512
  • Bitnami/nginx-ingress-controller
 ingress-nginx auth-method nginx configuration injection yesterday
  • Fix available
  • Severity - 8.8 (High)
BIT-airflow-2026-24098
  • Bitnami/airflow
 Apache Airflow: Assigning single DAG permission leaked all DAGs Import Errors yesterday
  • Fix available
  • Severity - 6.5 (Medium)
BIT-airflow-2026-22922
  • Bitnami/airflow
 Apache Airflow: Airflow externalLogUrl Permission Bypass yesterday
  • Fix available
  • Severity - 6.5 (Medium)
BIT-nginx-2026-1642
  • Bitnami/nginx
 See record for full details 3 days ago
  • Fix available
  • Severity - 8.2 (High)
BIT-golang-2025-68121
  • Bitnami/golang
 Unexpected session resumption in crypto/tls 3 days ago
  • Fix available
  • Severity - 10.0 (Critical)
Load more...