Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-1756

In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, insufficient input escaping was applied to the PHP unit webrunner admin tool.

Published

2022-08-16T21:15:09.633

Last Modified

2024-11-21T05:11:19.197

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-20
  • Type: Primary
    CWE-20
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application moodle moodle < 3.5.11 Yes
Application moodle moodle < 3.6.9 Yes
Application moodle moodle < 3.7.5 Yes
Application moodle moodle < 3.8.2 Yes
References