2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4294 | — | — | 1.5% | Jul 16, 2012 | The error-message functionality in Moodle 1.9.x before 1.9.13, 2.0.x before 2.0.4, and 2.1.x before 2.1.1 does not ensur... |
| CVE-2011-4293 | — | — | 2.4% | Jul 16, 2012 | The theme implementation in Moodle 2.0.x before 2.0.4 and 2.1.x before 2.1.1 triggers duplicate caching of Cascading Sty... |
| CVE-2011-4292 | — | — | 2.0% | Jul 16, 2012 | Moodle 2.0.x before 2.0.3 allows remote authenticated users to cause a denial of service (invalid database records) via ... |
| CVE-2011-4291 | — | — | 1.9% | Jul 16, 2012 | Moodle 2.0.x before 2.0.3 allows remote authenticated users to cause a denial of service (invalid database records) via ... |
| CVE-2011-4290 | — | — | 1.2% | Jul 16, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in lib/weblib.php in Moodle 1.9.x before 1.9.12 allow remote attacke... |
| CVE-2011-4289 | — | — | 1.7% | Jul 16, 2012 | Moodle 2.0.x before 2.0.3 does not recognize the configuration setting that makes e-mail addresses visible only to cours... |
| CVE-2011-4288 | — | — | 1.7% | Jul 16, 2012 | Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly implement associations between teachers and groups, ... |
| CVE-2011-4287 | — | — | 2.1% | Jul 16, 2012 | admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force password changes for autosubscribed users, which m... |
| CVE-2011-4286 | — | — | 1.8% | Jul 16, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in the media-filter implementation in filter/mediaplugin/filter.php ... |
| CVE-2011-4285 | — | — | 1.9% | Jul 16, 2012 | The default configuration of Moodle 2.0.x before 2.0.2 has an incorrect setting of the moodle/course:delete capability, ... |
| CVE-2011-4284 | — | — | 2.1% | Jul 16, 2012 | Moodle 2.0.x before 2.0.2 allows remote attackers to obtain sensitive information from a myprofile (aka My profile) bloc... |
| CVE-2011-4283 | — | — | 2.1% | Jul 16, 2012 | Moodle 1.9.x before 1.9.11 and 2.0.x before 2.0.2 places an IMS enterprise enrolment file in the course-files area, whic... |
| CVE-2011-4282 | — | — | 1.8% | Jul 16, 2012 | Multiple cross-site scripting (XSS) vulnerabilities in the course-tags functionality in tag/coursetags_more.php in Moodl... |
| CVE-2011-4281 | — | — | 1.0% | Jul 16, 2012 | Multiple cross-site request forgery (CSRF) vulnerabilities in Moodle 2.0.x before 2.0.2 allow remote attackers to hijack... |
| CVE-2011-4280 | — | — | 3.6% | Jul 16, 2012 | Cross-site scripting (XSS) vulnerability in the Spike PHPCoverage (aka spikephpcoverage) library, as used in Moodle 2.0.... |
| CVE-2011-4279 | — | — | 1.4% | Jul 16, 2012 | Moodle 2.0.x before 2.0.2 does not use the forceloginforprofiles setting for course-profiles access control, which makes... |
| CVE-2011-4278 | — | — | 1.8% | Jul 16, 2012 | Cross-site scripting (XSS) vulnerability in the tag autocomplete functionality in Moodle 1.9.x before 1.9.11 and 2.0.x b... |
| CVE-2011-4133 | — | — | 1.0% | Jul 16, 2012 | Cross-site request forgery (CSRF) vulnerability in Moodle 1.9.x before 1.9.11 allows remote attackers to hijack the auth... |
| CVE-2011-4309 | — | — | 1.4% | Jul 11, 2012 | Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to bypass intended access restrictions and perf... |
| CVE-2011-4308 | — | — | 1.7% | Jul 11, 2012 | mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, and 2.1.x before 2.1.2 allows remote authenticated... |
| CVE-2011-4307 | — | — | 1.2% | Jul 11, 2012 | Cross-site scripting (XSS) vulnerability in mod/wiki/lang/en/wiki.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.... |
| CVE-2011-4306 | — | — | 1.8% | Jul 11, 2012 | Cross-site scripting (XSS) vulnerability in course/editsection.html in Moodle 1.9.x before 1.9.14 allows remote authenti... |
| CVE-2011-4305 | — | — | 1.9% | Jul 11, 2012 | message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authenticated users to cause a denial of service (infini... |
| CVE-2011-4304 | — | — | 1.7% | Jul 11, 2012 | The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote authenticated users to discover... |
| CVE-2011-4303 | — | — | 1.2% | Jul 11, 2012 | lib/db/upgrade.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not set the correct registration_hubs.secret... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now