NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-3636	A flaw was found in Moodle. This vulnerability allows unauthorized users to access and view RSS feeds due to insufficient capability checks.	2025-04-25	4.3	NETWORK	MEDIUM	NVD
CVE-2025-3635	A security vulnerability was discovered in Moodle that allows anyone to duplicate existing tours without needing to log in due to a lack of protection...	2025-04-25	3.5	NETWORK	LOW	NVD
CVE-2025-3628	A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing student identities.	2025-04-25	4.3	NETWORK	MEDIUM	NVD
CVE-2025-3627	A security vulnerability was discovered in Moodle that allows some users to access sensitive information about other students before they finish verif...	2025-04-25	4.3	NETWORK	MEDIUM	NVD
CVE-2025-3625	A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from ...	2025-04-25	7.1	NETWORK	HIGH	NVD
CVE-2025-32432	Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. Starting from version 3.0.0-RC1 to before 3.9.15...	2025-04-25	10.0	NETWORK	CRITICAL	NVD
CVE-2025-32045	A flaw has been identified in Moodle where insufficient capability checks in certain grade reports allowed users without the necessary permissions to ...	2025-04-25	5.3	NETWORK	MEDIUM	NVD
CVE-2025-32044	A flaw has been identified in Moodle where, on certain sites, unauthenticated users could retrieve sensitive user data—including names, contact inform...	2025-04-25	7.5	NETWORK	HIGH	NVD
CVE-2025-28076	Multiple SQL injection vulnerabilities in EasyVirt DCScope <= 8.6.4 and CO2Scope <= 1.3.4 allows remote authenticated attackers to execute arbitrary S...	2025-04-25	6.5	NETWORK	MEDIUM	NVD
CVE-2025-3634	A security vulnerability was discovered in Moodle that allows students to enroll themselves in courses without completing all the necessary safety che...	2025-04-25	4.3	NETWORK	MEDIUM	NVD
CVE-2025-28354	An issue in the Printer Manager Systm of Entrust Corp Printer Manager D3.18.4-3 and below allows attackers to execute a directory traversal via a craf...	2025-04-25	6.5	NETWORK	MEDIUM	NVD
CVE-2024-57375	Andamiro Pump It Up 20th Anniversary (aka Double X or XX/2019) 1.00.0-2.08.3 allows a physically proximate attacker to cause a denial of service (appl...	2025-04-25	2.4	PHYSICAL	LOW	NVD
CVE-2024-6199	An unauthenticated attacker on the WAN interface, with the ability to intercept Dynamic DNS (DDNS) traffic between DDNS services and the modem, could ...	2025-04-25	7.7	ADJACENT	HIGH	NVD
CVE-2024-6198	The device exposes a web interface on ports TCP/3030 and TCP/9882. This web service runs lighttpd, which implements the “SNORE” interface. This interf...	2025-04-25	7.7	ADJACENT	HIGH	NVD
CVE-2025-3912	The WS Form LITE – Drag & Drop Contact Form Builder for WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing c...	2025-04-25	5.3	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.