Moodle 1.8.8

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:moodle:moodle:1.8.8:*:*:*:*:*:*:*

part: a version: 1.8.8 update: *

VendorMoodle (1f527b56-744d-5be6-b0f4-b691bd50b8c3)
ProductMoodle (221dc9da-2dde-53d2-a358-e0cb5ac858f7)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:docker/bitnami/moodle purl2cpe 2026-06-01 10:13:14.067894
pkg:github/moodle/moodle purl2cpe 2026-06-01 10:13:14.067895
pkg:rpm/fedora/moodle purl2cpe 2026-06-01 10:13:14.067896
pkg:rpm/opensuse/moodle purl2cpe 2026-06-01 10:13:14.067898

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2013-4525 vulnerable 2026-06-08 05:04:47.896635 Details available
Cross-site scripting (XSS) vulnerability in mod/quiz/report/responses/responses_table.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 allows remote authenticated users to inject arbitrary web script or HTML via an answer to a text-based quiz question.
Published: 2013-11-26T02:00:00.000Z
Updated: 2024-08-06T16:45:14.854Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-4524 vulnerable 2026-06-08 05:04:47.893632 Details available
Directory traversal vulnerability in repository/filesystem/lib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a path.
Published: 2013-11-26T02:00:00.000Z
Updated: 2024-08-06T16:45:15.047Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-4523 vulnerable 2026-06-08 05:04:47.890733 Details available
Cross-site scripting (XSS) vulnerability in message/lib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted message.
Published: 2013-11-26T02:00:00.000Z
Updated: 2024-08-06T16:45:15.234Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-4522 vulnerable 2026-06-08 05:04:47.850158 Details available
lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy server.
Published: 2013-11-26T02:00:00.000Z
Updated: 2024-08-06T16:45:15.089Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-3630 vulnerable 2026-06-08 05:04:32.392097 Details available
Moodle through 2.5.2 allows remote authenticated administrators to execute arbitrary programs by configuring the aspell pathname and then triggering a spell-check operation within the TinyMCE editor.
Published: 2013-11-01T01:00:00.000Z
Updated: 2024-08-06T16:14:56.560Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-1831 vulnerable 2026-06-08 05:03:56.672065 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-1830 vulnerable 2026-06-08 05:03:56.646637 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-2231 vulnerable 2026-06-08 04:54:12.324291 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-2230 vulnerable 2026-06-08 04:54:12.322741 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-2229 vulnerable 2026-06-08 04:54:12.321118 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-2228 vulnerable 2026-06-08 04:54:12.316791 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-1619 vulnerable 2026-06-08 04:54:09.342257 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-1618 vulnerable 2026-06-08 04:54:09.341492 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-1617 vulnerable 2026-06-08 04:54:09.332477 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-1616 vulnerable 2026-06-08 04:54:09.331362 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-1615 vulnerable 2026-06-08 04:54:09.330546 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-1614 vulnerable 2026-06-08 04:54:09.329795 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2010-1613 vulnerable 2026-06-08 04:54:09.323868 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4305 vulnerable 2026-06-08 04:51:47.939093 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4304 vulnerable 2026-06-08 04:51:47.938426 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4303 vulnerable 2026-06-08 04:51:47.937750 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4302 vulnerable 2026-06-08 04:51:47.937016 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4301 vulnerable 2026-06-08 04:51:47.936327 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4300 vulnerable 2026-06-08 04:51:47.935621 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4299 vulnerable 2026-06-08 04:51:47.934929 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4298 vulnerable 2026-06-08 04:51:47.933847 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-4297 vulnerable 2026-06-08 04:51:47.929173 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2009-1171 vulnerable 2026-06-08 04:51:13.375630 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.