This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_113595Moodle 3.11.x < 3.11.10 Multiple Vulnerabilities
EPSS
Percentile
82.5%
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.17, 3.11.x prior to 3.11.10 or 4.0.x prior to 4.0.4. It is, therefore, affected by multiple vulnerabilities:
-
A stored Cross-Site Scripting (XSS) and page Denial of Service (DoS) vulnerabilities due to recursive rendering in Mustache template helpers. (CVE-2022-40313)
-
A Remote Code Execution (RCE) vulnerability when restoring backup files originating from Moodle 1.9. (CVE-2022-40314)
-
A limited SQL injection vulnerability in the “browse list of users” site administration page. (CVE-2022-40315)
-
An information disclosure in the H5P activity attempts report not filtering by groups, leading to data exposure to non-editing teachers about attempts and users in groups they should not have access to. (CVE-2022-40316)
-
An improper access control in some quiz web services allowing students to bypass sequential navigation during a quiz attempt. (CVE-2022-40208)
Note that the scanner has not attempted to exploit this issue but has instead relied only on application’s self-reported version number.
No source dataReferences
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40208
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40313
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40314
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40315
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40316
moodle.org/mod/forum/discuss.php?d=438392#p1764793
moodle.org/mod/forum/discuss.php?d=438393#p1764794
moodle.org/mod/forum/discuss.php?d=438394#p1764795
moodle.org/mod/forum/discuss.php?d=438395#p1764796
moodle.org/mod/forum/discuss.php?d=438761#p1766080
Related
