66 matches found
EUVD-2012-2354
Malware in sbrugna...
EUVD-2022-6989
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-40314
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified. CVE-2022-40314 Note that Nessus relies on the presence of t...
BIT-MOODLE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
SUSE CVE-2009-4305
SQL injection vulnerability in the SCORM module in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 allows remote authenticated users to execute arbitrary SQL commands via vectors related to an "escaping issue when processing AICC CRS file CourseTitle."...
CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
Remote code execution
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
UBUNTU-CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified...
CVE-2022-40314
CVE-2022-40314 describes a remote code execution risk when restoring backup files originating from Moodle 1.9. The vulnerability is reported with a high/critical impact (CVSS: 9.8, NETWORK attack vector, no user interaction) and is supported by multiple connected sources (NVD entry and Nessus/Ope...
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross-site scripting XSS vulnerability in the phpCAS client library before 1.1.0, as used in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, which is not properly handled in an error message...
Design/Logic Flaw
grade/edit/outcome/editform.php in Moodle 1.9.x through 1.9.19, 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/grade:manage capability requirement, which allows remote authenticated users to convert custom outcomes into...
Moodle 1.9.14.2 Full Puth Disclosure Vulnerability
Exploit for php platform in category web applications Exploit Title: Full Path Disclosure --- Moodle 1.9.x - 1.9.14.2 Date: 2012 / 11 / 30 Author: r00tc0d3rs WebSite: www.r00tc0d3rs.org Facebook: www.facebook.com/r00tc0d3rs Twitter: @r00tc0d3rs Version: Moodle 1.9.x - 1.9.14.2 Category:: WebApps...
CVE-2012-2362
Cross-site scripting XSS vulnerability in blog/lib.php in the blog implementation in Moodle 1.9.x before 1.9.18, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted parameter to blog/index.php...
CVE-2012-2362
Cross-site scripting XSS vulnerability in blog/lib.php in the blog implementation in Moodle 1.9.x before 1.9.18, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted parameter to blog/index.php...
CVE-2012-2363
SQL injection vulnerability in calendar/event.php in the calendar implementation in Moodle 1.9.x before 1.9.18 allows remote authenticated users to execute arbitrary SQL commands via a crafted calendar event...
Cross site scripting
Cross-site scripting XSS vulnerability in blog/lib.php in the blog implementation in Moodle 1.9.x before 1.9.18, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted parameter to blog/index.php...