Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2016-0725

Cross-site scripting (XSS) vulnerability in the search_pagination function in course/classes/management_renderer.php in Moodle 2.8.x before 2.8.10, 2.9.x before 2.9.4, and 3.0.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted search string.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.9%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
Products affected by CVE-2016-0725
  • Moodle » Moodle » Version: 2.8.0
    cpe:2.3:a:moodle:moodle:2.8.0
  • Moodle » Moodle » Version: 2.8.1
    cpe:2.3:a:moodle:moodle:2.8.1
  • Moodle » Moodle » Version: 2.8.2
    cpe:2.3:a:moodle:moodle:2.8.2
  • Moodle » Moodle » Version: 2.8.3
    cpe:2.3:a:moodle:moodle:2.8.3
  • Moodle » Moodle » Version: 2.8.4
    cpe:2.3:a:moodle:moodle:2.8.4
  • Moodle » Moodle » Version: 2.8.5
    cpe:2.3:a:moodle:moodle:2.8.5
  • Moodle » Moodle » Version: 2.8.6
    cpe:2.3:a:moodle:moodle:2.8.6
  • Moodle » Moodle » Version: 2.8.7
    cpe:2.3:a:moodle:moodle:2.8.7
  • Moodle » Moodle » Version: 2.8.8
    cpe:2.3:a:moodle:moodle:2.8.8
  • Moodle » Moodle » Version: 2.8.9
    cpe:2.3:a:moodle:moodle:2.8.9
  • Moodle » Moodle » Version: 2.9.0
    cpe:2.3:a:moodle:moodle:2.9.0
  • Moodle » Moodle » Version: 2.9.1
    cpe:2.3:a:moodle:moodle:2.9.1
  • Moodle » Moodle » Version: 2.9.2
    cpe:2.3:a:moodle:moodle:2.9.2
  • Moodle » Moodle » Version: 2.9.3
    cpe:2.3:a:moodle:moodle:2.9.3
  • Moodle » Moodle » Version: 3.0.0
    cpe:2.3:a:moodle:moodle:3.0.0
  • Moodle » Moodle » Version: 3.0.1
    cpe:2.3:a:moodle:moodle:3.0.1
  • Fedoraproject » Fedora » Version: 22
    cpe:2.3:o:fedoraproject:fedora:22
  • Fedoraproject » Fedora » Version: 23
    cpe:2.3:o:fedoraproject:fedora:23


Products
Pricing
Contact Us

Shodan ® - All rights reserved