Moodle - Remote Code Execution

Attackers with the permission to create or modify questions in Moodle courses are able to craft malicious inputs for calculated questions, which can be abused to execute arbitrary commands on the underlying system. id: CVE-2024-43425 info: name: Moodle - Remote Code Execution author:...

Exploit for Code Injection in Moodle

CVE-2024-43425 Firmware info: Tên ứng dụng: Moodle Phiên...

CVE-2024-43425

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...

UBUNTU-CVE-2024-43425

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions...

PT-2024-5807 · Moodle +2 · Moodle +2

Name of the Vulnerable Software and Affected Versions: Moodle versions prior to 4.4.2 Moodle versions prior to 4.3.6 Moodle versions prior to 4.2.9 Moodle versions prior to 4.1.12 Description: A flaw was found in Moodle, allowing remote code execution due to incomplete sanitization in the...

Mageia: Security Advisory (MGASA-2014-0308)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Remote Code Execution (RCE)

Moodle is vulnerable to remote code execution RCE attacks. A malicious user can inject arbitrary code through a calculated questions on a quiz which would then be executed on the server...