Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • H
SQL Injection 		neural-compressor [,2.5) pip 24 Apr 2024
  • H
Unrestricted Upload of File with Dangerous Type 		moodle/moodle >=2.0.1 Composer 24 Apr 2024
  • C
Server-Side Request Forgery (SSRF) 		moodle/moodle <3.9.18 >=3.11, <3.11.11 >=4.0, <4.0.5 Composer 24 Apr 2024
  • H
Weak Password Recovery Mechanism for Forgotten Password 		moodle/moodle <2.7.16 >=2.9, <2.9.8 >=3.0, <3.0.6 >=3.1, <3.1.2 Composer 24 Apr 2024
  • M
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		moodle/moodle >=2.8, <2.8.10 >=2.9, <2.9.4 >=3.0, <3.0.2 Composer 24 Apr 2024
  • M
Cross-Site Scripting (XSS) 		moodle/moodle >=3.11, <3.11.11 >=4.0, <4.0.5 Composer 24 Apr 2024
  • M
Improper Input Validation 		moodle/moodle <3.1.18 >=3.4, <3.4.9 >=3.5, <3.5.6 >=3.6, <3.6.4 Composer 24 Apr 2024
  • M
Information Exposure 		moodle/moodle <3.1.7 >=3.2, <3.2.4 >=3.3, <3.3.1 Composer 24 Apr 2024
  • M
Information Exposure 		moodle/moodle >=3.1, <3.1.1 Composer 24 Apr 2024
  • M
Improper Input Validation 		moodle/moodle >=2.7, <2.7.18 >=3.0, <3.0.8 >=3.1, <3.1.4 >=3.2, <3.2.1 Composer 24 Apr 2024
  • M
Cross-Site Scripting (XSS) 		moodle/moodle <3.9.18 >=3.11, <3.11.11 >=4.0, <4.0.5 Composer 24 Apr 2024
  • M
Information Exposure Through an Error Message 		moodle/moodle >=3.10, <3.10.4 Composer 24 Apr 2024
  • M
Cross-site Scripting (XSS) 		moodle/moodle >=3.1, <3.1.12 >=3.2, <3.2.9 >=3.3, <3.3.6 >=3.4, <3.4.3 Composer 24 Apr 2024
  • M
Improper Access Control 		moodle/moodle <3.5.7 >=3.6.0, <3.6.5 >=3.7.0, <3.7.1 Composer 24 Apr 2024
  • M
Server-side Request Forgery (SSRF) 		moodle/moodle <3.9.15 >=3.11, <3.11.8 >=4.0, <4.0.2 Composer 24 Apr 2024
  • M
Improper Access Control 		moodle/moodle <3.5.7 >=3.6.0, <3.6.5 >=3.7.0, <3.7.1 Composer 24 Apr 2024
  • M
Information Exposure 		moodle/moodle >=3.10, <3.10.4 >=3.9, <3.9.7 >=3.8, <3.8.9 >=3.5, <3.5.18 Composer 24 Apr 2024
  • M
Cross-Site Request Forgery (CSRF) 		moodle/moodle >=2.7, <2.7.20 >=3.0, <3.0.10 >=3.1, <3.1.6 >=3.2, <3.2.3 Composer 24 Apr 2024
  • C
Malicious Package 		hardhat-daemon * npm 24 Apr 2024
  • C
Malicious Package 		react-dom-production-script * npm 24 Apr 2024
  • M
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		moodle/moodle <3.1.4 >=3.2, <3.2.1 Composer 24 Apr 2024
  • M
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		moodle/moodle <3.5.16 >=3.8, <3.8.7 >=3.9, <3.9.4 >=3.10, <3.10.1 Composer 24 Apr 2024
  • L
Out-of-bounds Read 		tillitis/tkey-device-signer [,1.0.0) Unmanaged (C/C++) 24 Apr 2024
  • M
Improper Access Control 		moodle/moodle <2.7.14 >=2.8, <2.8.12 >=2.9, <2.9.6 >=3.0, <3.0.3 Composer 24 Apr 2024
  • C
Command Injection 		zendframework/zend-mail <2.4.11 >=2.5, <2.7.2 Composer 24 Apr 2024
  • M
URL Redirection to Untrusted Site ('Open Redirect') 		moodle/moodle <3.5.9 >=3.6, <3.6.7 >=3.7, <3.7.3 Composer 24 Apr 2024
  • M
Exposure of Resource to Wrong Sphere 		moodle/moodle >=2.7, <2.7.20 >=3.0, <3.0.10 >=3.1, <3.1.6 >=3.2, <3.2.3 Composer 24 Apr 2024
  • M
Cross-site Scripting (XSS) 		moodle/moodle >=3.5, <3.5.9 >=3.6, <3.6.7 >=3.7, <3.7.3 Composer 24 Apr 2024
  • C
SQL Injection 		moodle/moodle >=2.7.0, <2.7.19 >=3.0.0, <3.0.9 >=3.1.0, <3.1.5 >=3.2.0, <3.2.2 Composer 24 Apr 2024
  • H
Improper Control of Generation of Code ('Code Injection') 		moodle/moodle >=3.5, <3.5.16 >=3.8, <3.8.7 >=3.9, <3.9.4 >=3.10, <3.10.1 Composer 24 Apr 2024