12 matches found
Moodle 3.10.1 SQL Injection
Exploit Title: Moodle Authenticated Time-Based Blind SQL Injection - "sort" Parameter Google Dork: Date: 04/11/2023 Exploit Author: Julio Ángel Ferrari Aka. T0X1Cx Vendor Homepage: https://moodle.org/ Software Link: Version: 3.10.1 Tested on: Linux CVE : CVE-2021-36393 import requests import stri...
Moodle 3.10.1 - Authenticated Blind Time-Based SQL Injection - (sort) parameter Exploit
Exploit Title: Moodle Authenticated Time-Based Blind SQL Injection - "sort" Parameter Exploit Author: Julio Ángel Ferrari Aka. T0X1Cx Vendor Homepage: https://moodle.org/ Software Link: Version: 3.10.1 Tested on: Linux CVE : CVE-2021-36393 import requests import string from termcolor import color...
Moodle 3.10.1 - Authenticated Blind Time-Based SQL Injection - "sort" parameter
Exploit Title: Moodle Authenticated Time-Based Blind SQL Injection - "sort" Parameter Google Dork: Date: 04/11/2023 Exploit Author: Julio Ángel Ferrari Aka. T0X1Cx Vendor Homepage: https://moodle.org/ Software Link: Version: 3.10.1 Tested on: Linux CVE : CVE-2021-36393 import requests import stri...
Exploit for Server-Side Request Forgery in Moodle
CVE-2021-36396 Exploit Description This repository holds a...
Exploit for SQL Injection in Moodle
CVE-2021-36396 Exploit Description This repository holds a...
Exploit for SQL Injection in Moodle
CVE-2021-36393 Error-based blind SQL injection with bit-shi...
CVE-2021-36393
In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses...
CVE-2021-36393
In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses...
CVE-2021-36393
CVE-2021-36393: Moodle SQL injection in recent courses library is supported by multiple connected documents detailing an authenticated, blind SQL injection via the sort parameter in Moodle’s course timeline feature. Exploits target Moodle 3.10.x (notably 3.10.1) and earlier, leveraging the core_c...
CVE-2021-36393
In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses...
Moodle 3.10.x < 3.10.5 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.8, 3.10.x prior to 3.10.5 or 3.11.x prior to 3.11.1. It is, therefore, affected by multiple vulnerabilities: - An SQL injection in the library fetching a user's enrolled courses. CVE-2021-36392 - An SQL injection in the...
CVE-2021-36393
creationtimestamp| type| source ---|---|--- 2022-02-02 17:41:55+00:00| seen| https://t.me/thebugbountyhunter/5998 2022-02-03 04:24:02+00:00| seen| https://t.me/BlueRedTeam/1685 2023-03-07 00:13:08+00:00| seen| https://t.me/cibsecurity/59508 2023-11-05 16:59:49+00:00| published-proof-of-concept|...