Moodle 3.10.0
Approved changes feed: RSS · Atom
cpe:2.3:a:moodle:moodle:3.10.0:-:*:*:*:*:*:*
part: a version: 3.10.0 update: -
| Vendor | Moodle (1f527b56-744d-5be6-b0f4-b691bd50b8c3) |
|---|---|
| Product | Moodle (221dc9da-2dde-53d2-a358-e0cb5ac858f7) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:docker/bitnami/moodle |
purl2cpe | 2026-06-01 10:13:14.068921 |
pkg:github/moodle/moodle |
purl2cpe | 2026-06-01 10:13:14.068922 |
pkg:rpm/fedora/moodle |
purl2cpe | 2026-06-01 10:13:14.068923 |
pkg:rpm/opensuse/moodle |
purl2cpe | 2026-06-01 10:13:14.068924 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-37674 |
vulnerable | 2026-06-08 06:39:48.031306 |
Details available
Cross Site Scripting vulnerability in Moodle CMS v3.10 allows a remote attacker to execute arbitrary code via the Field Name (name parameter) of a new activity.
Published: 2024-06-20T00:00:00.000Z
Updated: 2024-08-02T03:57:39.687Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-21809 |
vulnerable | 2026-06-08 05:29:13.289512 |
Details available
HIGH (8.2)
A command execution vulnerability exists in the default legacy spellchecker plugin in Moodle 3.10. A specially crafted series of HTTP requests can lead to command execution. An attacker must have administrator privileges to exploit this vulnerabilities.
Published: 2021-06-23T21:25:46.000Z
Updated: 2024-08-03T18:23:29.453Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.