Linux Distros Unpatched Vulnerability : CVE-2024-1439

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inadequate access control in Moodle LMS. This vulnerability could allow a local user with a student role to create arbitrary events intended for users with high...

Inadequate Access Control

moodle/moodle is vulnerable to Inadequate Access Control. This vulnerability allows unauthorized access by local users to create arbitrary events intended for higher roles. An attacker can add events to the calendar of all users without their prior consent...

CVE-2023-48304 Nextcloud Server vulnerable to attacker enabling/disabling birthday calendar for any user

Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 25.0.0 and prior to versions 25.0.11, 26.0.6, and 27.1.0 of Nextcloud Server and starting in version 22.0.0 and prior to versions 22.2.10.16, 23.0.12.11, 24.0.12.7, 25.0.11, 26.0.6, and 27.1.0...

Moodle 3.10.3 Cross Site Scripting

Exploit Title: Moodle 3.10.3 - 'label' Persistent Cross Site Scripting Date: 25.03.2021 Author: Vincent666 ibn Winnie Software Link: https://moodle.org/ Tested on: Windows 10 Web Browser: Mozilla Firefox Google Dorks: inurl:/lib/editor/atto/plugins/managefiles/ or calendar/view.php?view=month...