CVE-2005-3649 – Moodle 1.6dev - SQL Injection / Command Execution
https://notcve.org/view.php?id=CVE-2005-3649
jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users to other sites via the jump parameter. jumto.php en Moodle 1.5.2 permite a atacantes remotos redirigir usuarios a otros sitios mediante el parámetro jump. • https://www.exploit-db.com/exploits/1312 http://marc.info/?l=bugtraq&m=113165668814241&w=2 http://rgod.altervista.org/moodle16dev.html http://secunia.com/advisories/17526 http://securityreason.com/securityalert/168 http://www.osvdb.org/20750 http://www.vupen.com/english/advisories/2005/2387 •
CVE-2005-2247
https://notcve.org/view.php?id=CVE-2005-2247
Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown impact and attack vectors. • http://moodle.org/doc/?frame=release.html http://secunia.com/advisories/16028 •
CVE-2004-2233
https://notcve.org/view.php?id=CVE-2004-2233
Unknown "front page vulnerability with Moodle servers" for Moodle before 1.3.2 has unknown impact and attack vectors. • http://moodle.org/doc/?file=releaseold.html http://secunia.com/advisories/12045 http://www.osvdb.org/7710 http://www.securityfocus.com/bid/10697 https://exchange.xforce.ibmcloud.com/vulnerabilities/16662 •
CVE-2004-2232
https://notcve.org/view.php?id=CVE-2004-2232
SQL injection vulnerability in sql.php in the Glossary module in Moodle 1.4.1 and earlier allows remote attackers to modify SQL statements. • http://cvs.sourceforge.net/viewcvs.py/moodle/moodle/mod/glossary/sql.php?r1=1.15.2.2&%3Br2=1.15.2.3 http://secunia.com/advisories/13091 http://securitytracker.com/id?1012113 http://www.osvdb.org/11427 http://www.securityfocus.com/bid/11608 https://exchange.xforce.ibmcloud.com/vulnerabilities/17965 •
CVE-2004-2234
https://notcve.org/view.php?id=CVE-2004-2234
Unknown vulnerability in Moodle before 1.2 allows teachers to log in as administrators. • http://moodle.org/doc/?file=releaseold.html http://www.osvdb.org/7711 •