Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-3630
HistoryNov 01, 2013 - 2:55 a.m.

CVE-2013-3630

2013-11-0102:55:04
CWE-94
[email protected]
web.nvd.nist.gov
10

CVSS2

4.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.024

Percentile

89.9%

JSON

Moodle through 2.5.2 allows remote authenticated administrators to execute arbitrary programs by configuring the aspell pathname and then triggering a spell-check operation within the TinyMCE editor.

Affected configurations

Nvd
Node
moodlemoodleRange2.5.2
OR
moodlemoodleMatch1.1.1
OR
moodlemoodleMatch1.2.0
OR
moodlemoodleMatch1.2.1
OR
moodlemoodleMatch1.3.0
OR
moodlemoodleMatch1.3.1
OR
moodlemoodleMatch1.3.2
OR
moodlemoodleMatch1.3.3
OR
moodlemoodleMatch1.3.4
OR
moodlemoodleMatch1.4.1
OR
moodlemoodleMatch1.4.2
OR
moodlemoodleMatch1.4.3
OR
moodlemoodleMatch1.4.4
OR
moodlemoodleMatch1.4.5
OR
moodlemoodleMatch1.5
OR
moodlemoodleMatch1.5.0beta
OR
moodlemoodleMatch1.5.1
OR
moodlemoodleMatch1.5.2
OR
moodlemoodleMatch1.5.3
OR
moodlemoodleMatch1.6.0
OR
moodlemoodleMatch1.6.1
OR
moodlemoodleMatch1.6.2
OR
moodlemoodleMatch1.6.3
OR
moodlemoodleMatch1.6.4
OR
moodlemoodleMatch1.6.5
OR
moodlemoodleMatch1.6.6
OR
moodlemoodleMatch1.6.7
OR
moodlemoodleMatch1.6.8
OR
moodlemoodleMatch1.7.1
OR
moodlemoodleMatch1.7.2
OR
moodlemoodleMatch1.7.3
OR
moodlemoodleMatch1.7.4
OR
moodlemoodleMatch1.7.5
OR
moodlemoodleMatch1.7.6
OR
moodlemoodleMatch1.8.1
OR
moodlemoodleMatch1.8.2
OR
moodlemoodleMatch1.8.3
OR
moodlemoodleMatch1.8.4
OR
moodlemoodleMatch1.8.5
OR
moodlemoodleMatch1.8.6
OR
moodlemoodleMatch1.8.7
OR
moodlemoodleMatch1.8.8
OR
moodlemoodleMatch1.8.9
OR
moodlemoodleMatch1.8.10
OR
moodlemoodleMatch1.8.11
OR
moodlemoodleMatch1.8.12
OR
moodlemoodleMatch1.8.13
OR
moodlemoodleMatch1.8.14
OR
moodlemoodleMatch1.9.1
OR
moodlemoodleMatch1.9.2
OR
moodlemoodleMatch1.9.3
OR
moodlemoodleMatch1.9.4
OR
moodlemoodleMatch1.9.5
OR
moodlemoodleMatch1.9.6
OR
moodlemoodleMatch1.9.7
OR
moodlemoodleMatch1.9.8
OR
moodlemoodleMatch1.9.9
OR
moodlemoodleMatch1.9.10
OR
moodlemoodleMatch1.9.11
OR
moodlemoodleMatch1.9.12
OR
moodlemoodleMatch1.9.13
OR
moodlemoodleMatch1.9.14
OR
moodlemoodleMatch1.9.15
OR
moodlemoodleMatch1.9.16
OR
moodlemoodleMatch1.9.17
OR
moodlemoodleMatch1.9.18
OR
moodlemoodleMatch2.0.0
OR
moodlemoodleMatch2.0.1
OR
moodlemoodleMatch2.0.2
OR
moodlemoodleMatch2.0.3
OR
moodlemoodleMatch2.0.4
OR
moodlemoodleMatch2.0.5
OR
moodlemoodleMatch2.0.6
OR
moodlemoodleMatch2.0.7
OR
moodlemoodleMatch2.0.8
OR
moodlemoodleMatch2.0.9
OR
moodlemoodleMatch2.1.0
OR
moodlemoodleMatch2.1.1
OR
moodlemoodleMatch2.1.2
OR
moodlemoodleMatch2.1.3
OR
moodlemoodleMatch2.1.4
OR
moodlemoodleMatch2.1.5
OR
moodlemoodleMatch2.1.6
OR
moodlemoodleMatch2.1.7
OR
moodlemoodleMatch2.1.8
OR
moodlemoodleMatch2.1.9
OR
moodlemoodleMatch2.1.10
OR
moodlemoodleMatch2.2.0
OR
moodlemoodleMatch2.2.1
OR
moodlemoodleMatch2.2.2
OR
moodlemoodleMatch2.2.3
OR
moodlemoodleMatch2.2.4
OR
moodlemoodleMatch2.2.5
OR
moodlemoodleMatch2.2.6
OR
moodlemoodleMatch2.2.7
OR
moodlemoodleMatch2.2.8
OR
moodlemoodleMatch2.2.9
OR
moodlemoodleMatch2.2.10
OR
moodlemoodleMatch2.2.11
OR
moodlemoodleMatch2.3.0
OR
moodlemoodleMatch2.3.1
OR
moodlemoodleMatch2.3.2
OR
moodlemoodleMatch2.3.3
OR
moodlemoodleMatch2.3.4
OR
moodlemoodleMatch2.3.5
OR
moodlemoodleMatch2.3.6
OR
moodlemoodleMatch2.3.7
OR
moodlemoodleMatch2.3.8
OR
moodlemoodleMatch2.4.0
OR
moodlemoodleMatch2.4.1
OR
moodlemoodleMatch2.4.2
OR
moodlemoodleMatch2.4.3
OR
moodlemoodleMatch2.4.4
OR
moodlemoodleMatch2.4.5
OR
moodlemoodleMatch2.5.0
OR
moodlemoodleMatch2.5.1
VendorProductVersionCPE
moodlemoodle*cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*
moodlemoodle1.1.1cpe:2.3:a:moodle:moodle:1.1.1:*:*:*:*:*:*:*
moodlemoodle1.2.0cpe:2.3:a:moodle:moodle:1.2.0:*:*:*:*:*:*:*
moodlemoodle1.2.1cpe:2.3:a:moodle:moodle:1.2.1:*:*:*:*:*:*:*
moodlemoodle1.3.0cpe:2.3:a:moodle:moodle:1.3.0:*:*:*:*:*:*:*
moodlemoodle1.3.1cpe:2.3:a:moodle:moodle:1.3.1:*:*:*:*:*:*:*
moodlemoodle1.3.2cpe:2.3:a:moodle:moodle:1.3.2:*:*:*:*:*:*:*
moodlemoodle1.3.3cpe:2.3:a:moodle:moodle:1.3.3:*:*:*:*:*:*:*
moodlemoodle1.3.4cpe:2.3:a:moodle:moodle:1.3.4:*:*:*:*:*:*:*
moodlemoodle1.4.1cpe:2.3:a:moodle:moodle:1.4.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 1161

Related

cve 1
veracode 1
checkpoint_advisories 1
prion 1
github 1
ubuntucve 1
zdt 3
cvelist 1
exploitdb 1
osv 1
packetstorm 3
nessus 3
metasploit 2
fedora 3
openvas 4
cve
cve
CVE-2013-3630
2013-11-01 02:55:04
veracode
veracode
Remote Code Execution (RCE)
2017-07-07 08:03:47
checkpoint_advisories
checkpoint_advisories
Moodle Spellcheck Remote Command Execution (CVE-2013-3630)
2014-11-18 00:00:00
prion
prion
Code injection
2013-11-01 02:55:00
github
github
Moodle Authenticated Spelling Binary Remote Code Execution
2022-05-13 01:05:39
ubuntucve
ubuntucve
CVE-2013-3630
2013-11-01 00:00:00
zdt
zdt
Moodle Remote Command Execution Vulnerability
2013-10-31 00:00:00
Moodle SpellChecker Path Authenticated Remote Command Execution Exploit
2021-10-13 00:00:00
Moodle Authenticated Spelling Binary Remote Code Execution Exploit
2021-10-13 00:00:00
cvelist
cvelist
CVE-2013-3630
2013-11-01 01:00:00
exploitdb
exploitdb
Moodle - Remote Command Execution (Metasploit)
2013-10-31 00:00:00
osv
osv
Moodle Authenticated Spelling Binary Remote Code Execution
2022-05-13 01:05:39
packetstorm
packetstorm
Moodle Remote Command Execution
2013-10-30 00:00:00
Moodle SpellChecker Path Authenticated Remote Command Execution
2021-10-12 00:00:00
Moodle Authenticated Spelling Binary Remote Code Execution
2021-10-12 00:00:00
nessus
nessus
Fedora 18 : moodle-2.3.10-1.fc18 (2013-21354)
2013-11-25 00:00:00
Fedora 19 : moodle-2.4.7-1.fc19 (2013-21397)
2013-11-25 00:00:00
Fedora 20 : moodle-2.5.3-1.fc20 (2013-21312)
2013-11-25 00:00:00
metasploit
metasploit
Moodle SpellChecker Path Authenticated Remote Command Execution
2021-08-29 14:50:25
Moodle Authenticated Spelling Binary RCE
2021-08-29 14:50:25
fedora
fedora
[SECURITY] Fedora 20 Update: moodle-2.5.3-1.fc20
2013-11-24 03:29:31
[SECURITY] Fedora 18 Update: moodle-2.3.10-1.fc18
2013-11-23 19:35:25
[SECURITY] Fedora 19 Update: moodle-2.4.7-1.fc19
2013-11-23 19:49:20
openvas
openvas
Fedora Update for moodle FEDORA-2013-21354
2013-11-26 00:00:00
Fedora Update for moodle FEDORA-2013-21397
2013-11-26 00:00:00
Fedora Update for moodle FEDORA-2013-21397
2013-11-26 00:00:00

CVSS2

4.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.024

Percentile

89.9%

JSON
Related for NVD:CVE-2013-3630
cve1veracode1checkpoint_advisories1prion1github1ubuntucve1zdt3cvelist1exploitdb1osv1packetstorm3nessus3metasploit2fedora3openvas4