4 matches found
CVE-2023-5550
CVE-2023-5550 describes remote code execution in Moodle via a local file include (LFI) when a user has access to both Moodle and the web server outside Moodle’s webroot in a misconfigured shared hosting environment. The root cause is a misconfigured hosting setup enabling LFI; affected component ...
CVE-2023-5550 Moodle: rce due to lfi risk in some misconfigured shared hosting environments
In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user who also has direct access to the web server outside of the Moodle webroot could utilise a local file include to achieve remote code execution...
Fedora: Security Advisory for moodle (FEDORA-2023-6880309d0e)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 37 : moodle (2023-a7b0d27d18)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-a7b0d27d18 advisory. Latest updates Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...