Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-2576

In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums.

2017-01-20T08:59:00.393

2025-04-20T01:37:25.860

Deferred

CVSSv3.0: 5.3 (MEDIUM)

AV:N/AC:L/Au:N/C:N/I:P/A:N

10.0

2.9

Type	Vendor	Product	Version/Range	Vulnerable?
Application	moodle	moodle	≤ 2.7.17	Yes
Application	moodle	moodle	2.8.0	Yes
Application	moodle	moodle	2.8.1	Yes
Application	moodle	moodle	2.8.2	Yes
Application	moodle	moodle	2.8.3	Yes
Application	moodle	moodle	2.8.4	Yes
Application	moodle	moodle	2.8.5	Yes
Application	moodle	moodle	2.8.6	Yes
Application	moodle	moodle	2.8.7	Yes
Application	moodle	moodle	2.8.8	Yes
Application	moodle	moodle	2.8.9	Yes
Application	moodle	moodle	2.8.10	Yes
Application	moodle	moodle	2.8.11	Yes
Application	moodle	moodle	2.8.12	Yes
Application	moodle	moodle	2.9.0	Yes
Application	moodle	moodle	2.9.1	Yes
Application	moodle	moodle	2.9.2	Yes
Application	moodle	moodle	2.9.3	Yes
Application	moodle	moodle	2.9.4	Yes
Application	moodle	moodle	2.9.5	Yes
Application	moodle	moodle	2.9.6	Yes
Application	moodle	moodle	2.9.7	Yes
Application	moodle	moodle	2.9.8	Yes
Application	moodle	moodle	2.9.9	Yes
Application	moodle	moodle	3.0.0	Yes
Application	moodle	moodle	3.0.1	Yes
Application	moodle	moodle	3.0.2	Yes
Application	moodle	moodle	3.0.3	Yes
Application	moodle	moodle	3.0.4	Yes
Application	moodle	moodle	3.0.5	Yes
Application	moodle	moodle	3.0.6	Yes
Application	moodle	moodle	3.0.7	Yes
Application	moodle	moodle	3.1.0	Yes
Application	moodle	moodle	3.1.1	Yes
Application	moodle	moodle	3.1.2	Yes
Application	moodle	moodle	3.1.3	Yes
Application	moodle	moodle	3.2.0	Yes