Lucene search
RedhatCVELIST:CVE-2018-1137HistoryMay 25, 2018 - 12:00 p.m.
CVE-2018-1137
2018-05-2512:00:00
redhat
www.cve.org
6
An issue was discovered in Moodle 3.x. By substituting URLs in portfolios, users can instantiate any class. This can also be exploited by users who are logged in as guests to create a DDoS attack.
CNA Affected
[
{
"product": "Moodle 3.x unknown",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Moodle 3.x unknown"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2018-1137
2018-05-25 00:00:00
prion
prion
Code injection
2018-05-25 12:29:00
veracode
veracode
Unauthorized Instantiation And Denial Of Service (DoS)
2018-05-28 04:14:54
nvd
nvd
CVE-2018-1137
2018-05-25 12:29:00
osv
osv
CVE-2018-1137
2018-05-25 12:29:00
Moodle Portfolio script allows instantiation of class chosen by user
2022-05-14 03:16:23
github
github
Moodle Portfolio script allows instantiation of class chosen by user
2022-05-14 03:16:23
cve
cve
CVE-2018-1137
2018-05-25 12:29:00
openvas
openvas
Moodle 3.x Multiple Vulnerabilities (May 2018) - Windows
2018-05-29 00:00:00
Moodle 3.x Multiple Vulnerabilities (May 2018) - Linux
2018-05-29 00:00:00