12 matches found
Moodle - Remote Code Execution
Attackers with the permission to create or modify questions in Moodle courses are able to craft malicious inputs for calculated questions, which can be abused to execute arbitrary commands on the underlying system. id: CVE-2024-43425 info: name: Moodle - Remote Code Execution author:...
📄 Moodle 4.x PHP Code Injection
This proof of concept demonstrates a code injection vulnerability in Moodle versions 4.x. ============================================================================================================================================= | Title : Moodle 4.x PHP Code Injection Vulnerability | | Author ...
Linux Distros Unpatched Vulnerability : CVE-2024-43425
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the...
Exploit for Code Injection in Moodle
Moodle 4.4.0 - Authenticated Remote Code Execution CVE-2024-4...
Moodle 4.4.0 - Authenticated Remote Code Execution
Exploit Title: Moodle 4.4.0 - Authenticated Remote Code Execution Exploit Author: Likhith Appalaneni Vendor Homepage: https://moodle.org Software Link: https://github.com/moodle/moodle/releases/tag/v4.4.0 Tested Version: Moodle 4.4.0 Affected versions: 4.4 to 4.4.1, 4.3 to 4.3.5, 4.2 to 4.2.8, 4....
Exploit for Code Injection in Moodle
CVE-2024-43425-Poc CVE Overview CVE ID: CVE-2024-43425 Descr...
Exploit for Code Injection in Moodle
This is a PoC exploit for CVE-2024-43425, a vulnerability in Moo...
Moodle Remote Code Execution (CVE-2024-43425)
This module exploits a command injection vulnerability in Moodle CVE-2024-43425 to obtain remote code execution. Affected versions include 4.4 to 4.4.1, 4.3 to 4.3.5, 4.2 to 4.2.8, 4.1 to 4.1.11, and earlier unsupported versions. Module Options msf use exploit/linux/http/moodlerce msf...
CVE-2024-43425
A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...
CVE-2024-43425
A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...
CVE-2024-43425 Moodle: remote code execution via calculated question types
A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...
CVE-2024-43425
creationtimestamp| type| source ---|---|--- 2024-08-28 09:02:28+00:00| published-proof-of-concept| Telegram/sV1gHuMmsF6Obkl4pHuEINogRh1QzHPw2lXaflMTbK27AeDb 2024-08-29 09:08:14+00:00| published-proof-of-concept| https://t.me/HackingInsights/11532 2024-08-29 14:20:05+00:00|...