Vulners
Lucene search
CVE-2018-1042
🗓️ 22 Jan 2018 08:00:00Reported by redhatType 
cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 90 Views🌐 WEB
| Reporter | Title | Published | Views | Family All 23 |
|---|---|---|---|---|
 | Moodle Filepicker 3.5.2 - Server Side Request Forgery Vulnerability | 26 Jul 201900:00 | – | zdt |
 | Moodle Cross-Site Request Forgery Vulnerability (CNVD-2018-02378) | 23 Jan 201800:00 | – | cnvd |
 | CVE-2018-1042 | 22 Jan 201808:00 | – | cvelist |
 | Moodle Filepicker 3.5.2 - Server Side Request Forgery | 26 Jul 201900:00 | – | exploitdb |
 | Moodle Filepicker 3.5.2 - Server Side Request Forgery | 26 Jul 201900:00 | – | exploitpack |
 | [SECURITY] Fedora 27 Update: moodle-3.3.4-1.fc27 | 31 Jan 201821:59 | – | fedora |
| [SECURITY] Fedora 26 Update: moodle-3.2.7-1.fc26 | 31 Jan 201818:06 | – | fedora |
 | Fedora 26 : moodle (2018-7e086e3309) | 1 Feb 201800:00 | – | nessus |
| Fedora 27 : moodle (2018-c587c0a62d) | 1 Feb 201800:00 | – | nessus |
| Linux Distros Unpatched Vulnerability : CVE-2018-1042 | 2 Sep 202500:00 | – | nessus |
10
Node
OROROROROROROROROROROROR
[
{
"product": "Moodle 3.x",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Moodle 3.x"
}
]
}
]| Source | Link |
|---|---|
| moodle | www.moodle.org/mod/forum/discuss.php |
| securityfocus | www.securityfocus.com/bid/102752 |
| packetstormsecurity | www.packetstormsecurity.com/files/153766/Moodle-Filepicker-3.5.2-Server-Side-Request-Forgery.html |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| file | request body | repository/repository_ajax.php | Server-Side Request Forgery (SSRF) via Moodle filepicker repository_ajax.php with parameter 'file' allowing internal network access | CWE-918 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
21 Nov 2024 03:59Current
6.3Medium risk
Vulners AI Score6.3
CVSS 24
CVSS 36.5
EPSS0.12866