Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-59x8-cvxh-3mm4
  • Packagist/yeswiki/yeswiki
 YesWiki Stored XSS Vulnerability in Comments 10 hours ago
  • Fix available
  • Severity - 2.1 (Low)
GHSA-88xg-v53p-fpvf
  • Packagist/yeswiki/yeswiki
 YesWiki Remote Code Execution via Arbitrary PHP File Write and Execution 10 hours ago
  • Fix available
  • Severity - 7.4 (High)
GHSA-wc9g-6j9w-hr95
  • Packagist/yeswiki/yeswiki
 YesWiki Vulnerable to Unauthenticated Site Backup Creation and Download 10 hours ago
  • Fix available
  • Severity - 10.0 (Critical)
GHSA-2f8p-qqx2-gwr2
  • Packagist/yeswiki/yeswiki
 YesWiki Vulnerable to Unauthenticated Reflected Cross-site Scripting 10 hours ago
  • No fix available
  • Severity - 7.6 (High)
GHSA-cg4f-cq8h-3ch8
  • Packagist/yeswiki/yeswiki
 Yeswiki Vulnerable to Authenticated Reflected Cross-site Scripting 10 hours ago
  • Fix available
  • Severity - 3.8 (Low)
GHSA-ggqx-43h2-55jp
  • Packagist/yeswiki/yeswiki
 Yeswiki Vulnerable to Unauthenticated Reflected Cross-site Scripting 10 hours ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-r9gv-qffm-xw6f
  • Packagist/yeswiki/yeswiki
 Yeswiki Vulnerable to Unauthenticated Reflected Cross-site Scripting 10 hours ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-34g7-pg9j-pxgp
  • Packagist/moodle/moodle
 Moodle allows IDOR when accessing the cohorts report 4 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-6g5x-h5x7-q4mq
  • Packagist/moodle/moodle
 Moodle has an IDOR in web service which allows users enrolled in a course to access some details of other users 4 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-88xj-97gf-7wpq
  • Packagist/moodle/moodle
 Moodle has a CSRF risk in user tours manager that allows tour duplication 4 days ago
  • Fix available
  • Severity - 3.5 (Low)
GHSA-9vc3-vm42-fjhm
  • Packagist/moodle/moodle
 Moodle's mod_data edit/delete pages pass CSRF token in GET parameter 4 days ago
  • Fix available
  • Severity - 3.1 (Low)
GHSA-c8v6-vxhf-wcrr
  • Packagist/moodle/moodle
 Moodle has an authenticated remote code execution risk in the Moodle LMS Dropbox repository 4 days ago
  • Fix available
  • Severity - 8.8 (High)
GHSA-chmf-m33p-ph8m
  • Packagist/moodle/moodle
 Moodle allows IDOR in RSS block, which allows access to additional RSS feeds 4 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-cpm7-mv33-jwf8
  • Packagist/moodle/moodle
 Moodle's AJAX section delete does not respect course_can_delete_section() 4 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-hxgg-4qww-85ph
  • Packagist/moodle/moodle
 Moodle has reflected Cross-site Scripting risk in policy tool 4 days ago
  • Fix available
  • Severity - 5.4 (Medium)
GHSA-m367-445c-2xqr
  • Packagist/moodle/moodle
 Moodle has an authenticated remote code execution risk in the Moodle LMS EQUELLA repository 4 days ago
  • Fix available
  • Severity - 8.8 (High)
Load more...