vulnerability

FreeBSD: moodle -- multiple vulnerabilities (Multiple CVEs)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	Feb 22, 2016	Feb 29, 2016	Jul 28, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

Feb 22, 2016

Added

Feb 29, 2016

Modified

Jul 28, 2025

Description

Cross-site scripting (XSS) vulnerability in the search_pagination function in course/classes/management_renderer.php in Moodle 2.8.x before 2.8.10, 2.9.x before 2.9.4, and 3.0.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted search string.

Solutions

freebsd-upgrade-package-moodle28freebsd-upgrade-package-moodle29freebsd-upgrade-package-moodle30

References

CVE-2016-0724
https://attackerkb.com/topics/CVE-2016-0724
CVE-2016-0725
https://attackerkb.com/topics/CVE-2016-0725
https://moodle.org/security/

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report