103 matches found
CVE-2012-5479
The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to upload and execute files via a modified Portfolio API callback...
Design/Logic Flaw
The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to upload and execute files via a modified Portfolio API callback...
CVE-2012-5479
The CVE concerns the Moodle Portfolio plugin. Affected releases are Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3. The vulnerability allows remote authenticated users to upload and execute files via a modified Portfolio API callback. This results in arbitrary code executio...