Browse all 5 CVE security advisories affecting The Moodle Project. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Moodle is an open-source learning management system used by educational institutions worldwide to deliver online courses and manage academic content. Historically, the platform has been susceptible to various vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and access control flaws. While no major security incidents have been widely documented, the project maintains a moderate CVE count with five records to date. Moodle's security posture is characterized by regular security updates and a responsive disclosure process, though its extensive customization options and third-party plugin ecosystem can introduce additional attack vectors if not properly maintained.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-1692 | Moodle 信息泄露漏洞 — moodleCWE-352 | 8.1 | High | 2020-02-17 |
| CVE-2019-10186 | Moodle 跨站请求伪造漏洞 — moodleCWE-352 | 8.1 | - | 2019-07-31 |
| CVE-2019-10187 | Moodle 访问控制错误漏洞 — moodleCWE-284 | 4.3 | - | 2019-07-31 |
| CVE-2019-10188 | Moodle 访问控制错误漏洞 — moodleCWE-284 | 4.3 | - | 2019-07-31 |
| CVE-2019-10189 | Moodle 访问控制错误漏洞 — moodleCWE-284 | 4.3 | - | 2019-07-31 |
This page lists every published CVE security advisory associated with The Moodle Project. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.