Lucene search
K

30 matches found

Nuclei
Nuclei
added 2 days ago78 views

Moodle - Remote Code Execution

Attackers with the permission to create or modify questions in Moodle courses are able to craft malicious inputs for calculated questions, which can be abused to execute arbitrary commands on the underlying system. id: CVE-2024-43425 info: name: Moodle - Remote Code Execution author:...

8.1CVSS7.4AI score0.83343EPSS
Exploits8References4
OSV
OSV
added 4 days ago13 views

ROOT-OS-UBUNTU-2404-CVE-2026-43425 CVE-2026-43425 in rootio-linux - Patched by Root

Root has patched CVE-2026-43425 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
OSV
OSV
added 2026/05/12 6:9 a.m.4 views

BELL-CVE-2026-43425

Bulletin has no description...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/02/02 12:0 a.m.141 views

📄 Moodle 4.x PHP Code Injection

This proof of concept demonstrates a code injection vulnerability in Moodle versions 4.x. ============================================================================================================================================= | Title : Moodle 4.x PHP Code Injection Vulnerability | | Author ...

8.1CVSS5.5AI score0.83343EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.5 views

TencentOS Server 2: webkitgtk4 (TSSA-2025:0998)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0998 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

8.8CVSS7.3AI score0.01378EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/01/06 12:0 a.m.3 views

SUSE SLED15: WebKitGTK-4.0-lang / WebKitGTK-4.1-lang / WebKitGTK-6.0-lang / etc (SUSE-SU-2026:0021-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0021-1 advisory. Update to version 2.50.4. Security issues fixed: - CVE-2025-13502: processing of maliciously...

8.8CVSS7.6AI score0.32EPSS
Exploits15References76
Tenable Nessus
Tenable Nessus
added 2026/01/05 12:0 a.m.6 views

Amazon Linux 2 : webkitgtk4, --advisory ALAS2-2025-3114 (ALAS-2025-3114)

The version of webkitgtk4 installed on the remote host is prior to 2.50.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3114 advisory. A flaw was found in WebKitGTK and WPE WebKit. This vulnerability allows an out-of-bounds read and integer underflow,...

8.8CVSS7.5AI score0.32EPSS
Exploits8References56
RedHat Linux
RedHat Linux
added 2025/12/22 1:58 a.m.11 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

8.8CVSS7.1AI score0.01378EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2025/12/22 1:45 a.m.3 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update ...

8.8CVSS7.1AI score0.01378EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2025/12/17 12:19 p.m.4 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS7.1AI score0.01378EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2025/12/05 12:0 a.m.2 views

Mageia: Security Advisory (MGASA-2025-0319)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.01378EPSS
Exploits0References5
Mageia
Mageia
added 2025/12/04 11:29 p.m.6 views

Updated webkit2 packages fix security vulnerabilities

The updated packages fix security vulnerabilities: CVE-2025-43392, CVE-2025-43419, CVE-2025-43425, CVE-2025-43427, CVE-2025-43429, CVE-2025-43430, CVE-2025-43431, CVE-2025-43432, CVE-2025-43434, CVE-2025-43440, CVE-2025-43443, CVE-2025-43421...

8.8CVSS7AI score0.01378EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/11/28 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-6f3e9e3af6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.03955EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2025/11/05 2:14 a.m.8 views

CVE-2025-43425

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages require WebKitGTK4:...

8.8CVSS6AI score0.0065EPSS
Exploits0References4
CVE
CVE
added 2025/11/04 1:15 a.m.27 views

CVE-2025-43425

CVE-2025-43425 is linked to WebKit/WebKitGTK family as described in connected advisories. The vuln manifests as processing maliciously crafted web content that may lead to an unexpected process crash. Concrete details across connected docs show multiple distributions addressing this via updated W...

4.3CVSS6.6AI score0.0065EPSS
Exploits0References6Affected Software6
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-43425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the...

8.1CVSS8.6AI score0.83343EPSS
Exploits8References2
GithubExploit
GithubExploit
added 2025/07/13 4:52 a.m.245 views

Exploit for Code Injection in Moodle

Moodle 4.4.0 - Authenticated Remote Code Execution CVE-2024-4...

8.1CVSS9.4AI score0.83343EPSS
Exploits8
Exploit DB
Exploit DB
added 2025/07/02 12:0 a.m.248 views

Moodle 4.4.0 - Authenticated Remote Code Execution

Exploit Title: Moodle 4.4.0 - Authenticated Remote Code Execution Exploit Author: Likhith Appalaneni Vendor Homepage: https://moodle.org Software Link: https://github.com/moodle/moodle/releases/tag/v4.4.0 Tested Version: Moodle 4.4.0 Affected versions: 4.4 to 4.4.1, 4.3 to 4.3.5, 4.2 to 4.2.8, 4....

8.1CVSS8.1AI score0.83343EPSS
Exploits8
Packet Storm
Packet Storm
added 2025/07/02 12:0 a.m.103 views

📄 Moodle 4.4.0 Remote Code Execution

Moodle version 4.4.0 authenticated remote code execution exploit. Exploit Title: Moodle 4.4.0 - Authenticated Remote Code Execution Exploit Author: Likhith Appalaneni Vendor Homepage: https://moodle.org Software Link: https://github.com/moodle/moodle/releases/tag/v4.4.0 Tested Version: Moodle 4.4...

8.1CVSS9.2AI score0.83343EPSS
Exploits8
GithubExploit
GithubExploit
added 2025/06/28 8:49 a.m.418 views

Exploit for Code Injection in Moodle

CVE-2024-43425-Poc CVE Overview CVE ID: CVE-2024-43425 Descr...

8.1CVSS8.5AI score0.83343EPSS
Exploits8
Rows per page
Query Builder