Lucene search
K

12 matches found

Nuclei
Nuclei
added yesterday74 views

Moodle - Remote Code Execution

Attackers with the permission to create or modify questions in Moodle courses are able to craft malicious inputs for calculated questions, which can be abused to execute arbitrary commands on the underlying system. id: CVE-2024-43425 info: name: Moodle - Remote Code Execution author:...

8.1CVSS7.4AI score0.83343EPSS
Exploits8References4
Packet Storm
Packet Storm
added 2026/02/02 12:0 a.m.141 views

📄 Moodle 4.x PHP Code Injection

This proof of concept demonstrates a code injection vulnerability in Moodle versions 4.x. ============================================================================================================================================= | Title : Moodle 4.x PHP Code Injection Vulnerability | | Author ...

8.1CVSS5.5AI score0.83343EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-43425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the...

8.1CVSS8.6AI score0.83343EPSS
Exploits8References2
GithubExploit
GithubExploit
added 2025/07/13 4:52 a.m.245 views

Exploit for Code Injection in Moodle

Moodle 4.4.0 - Authenticated Remote Code Execution CVE-2024-4...

8.1CVSS9.4AI score0.83343EPSS
Exploits8
Exploit DB
Exploit DB
added 2025/07/02 12:0 a.m.248 views

Moodle 4.4.0 - Authenticated Remote Code Execution

Exploit Title: Moodle 4.4.0 - Authenticated Remote Code Execution Exploit Author: Likhith Appalaneni Vendor Homepage: https://moodle.org Software Link: https://github.com/moodle/moodle/releases/tag/v4.4.0 Tested Version: Moodle 4.4.0 Affected versions: 4.4 to 4.4.1, 4.3 to 4.3.5, 4.2 to 4.2.8, 4....

8.1CVSS8.1AI score0.83343EPSS
Exploits8
GithubExploit
GithubExploit
added 2025/06/28 8:49 a.m.417 views

Exploit for Code Injection in Moodle

CVE-2024-43425-Poc CVE Overview CVE ID: CVE-2024-43425 Descr...

8.1CVSS8.5AI score0.83343EPSS
Exploits8
GithubExploit
GithubExploit
added 2025/02/07 7:48 p.m.562 views

Exploit for Code Injection in Moodle

This is a PoC exploit for CVE-2024-43425, a vulnerability in Moo...

8.1CVSS8.6AI score0.83343EPSS
Exploits8
Metasploit
Metasploit
added 2024/12/06 6:58 p.m.1111 views

Moodle Remote Code Execution (CVE-2024-43425)

This module exploits a command injection vulnerability in Moodle CVE-2024-43425 to obtain remote code execution. Affected versions include 4.4 to 4.4.1, 4.3 to 4.3.5, 4.2 to 4.2.8, 4.1 to 4.1.11, and earlier unsupported versions. Module Options msf use exploit/linux/http/moodlerce msf...

8.1CVSS8.1AI score0.83343EPSS
Exploits8
NVD
NVD
added 2024/11/07 2:15 p.m.75 views

CVE-2024-43425

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...

8.1CVSS0.83343EPSS
Exploits8References2
UbuntuCve
UbuntuCve
added 2024/11/07 2:15 p.m.17 views

CVE-2024-43425

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...

8.1CVSS7.5AI score0.83343EPSS
Exploits8References3
OSV
OSV
added 2024/11/07 1:21 p.m.15 views

CVE-2024-43425 Moodle: remote code execution via calculated question types

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...

8.1CVSS7.3AI score0.83343EPSS
Exploits8References5
Circl
Circl
added 2024/08/28 9:2 a.m.71 views

CVE-2024-43425

creationtimestamp| type| source ---|---|--- 2024-08-28 09:02:28+00:00| published-proof-of-concept| Telegram/sV1gHuMmsF6Obkl4pHuEINogRh1QzHPw2lXaflMTbK27AeDb 2024-08-29 09:08:14+00:00| published-proof-of-concept| https://t.me/HackingInsights/11532 2024-08-29 14:20:05+00:00|...

8.1CVSS7.3AI score0.83343EPSS
Exploits8References14
Rows per page
Query Builder