Lucene search
K

5164 matches found

Veracode
Veracode
added 2024/06/07 7:23 a.m.16 views

Information Exposure Through Misconfigured Permissions

Moodle is vulnerable to a Information Exposure Through Misconfigured Permissions. The vulnerability is due to misconfiguration in a shared hosting environment, allowing a user with access to restore feedback modules and direct access to the web server outside of the Moodle webroot to execute a...

6.5CVSS6.4AI score0.00475EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/05/31 9:30 p.m.20 views

Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2024/05/31 9:30 p.m.24 views

Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS6.4AI score0.00354EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/05/31 9:30 p.m.12 views

GHSA-Q3CM-CCRM-2MR6 Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS8.8AI score0.00459EPSS
Exploits0References3
OSV
OSV
added 2024/05/31 9:15 p.m.17 views

CVE-2024-34003

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS7.1AI score
Exploits0References1
OSV
OSV
added 2024/05/31 9:15 p.m.12 views

CVE-2024-34002

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2024/05/31 9:15 p.m.26 views

CVE-2024-34003

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS6.5AI score0.00354EPSS
Exploits0References1
NVD
NVD
added 2024/05/31 9:15 p.m.28 views

CVE-2024-34005

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.4AI score0.00475EPSS
Exploits0References1
OSV
OSV
added 2024/05/31 9:15 p.m.11 views

CVE-2024-34004

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2024/05/31 9:15 p.m.17 views

CVE-2024-34002

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References1
OSV
OSV
added 2024/05/31 9:15 p.m.10 views

CVE-2024-34005

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2024/05/31 9:15 p.m.16 views

CVE-2024-34004

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00459EPSS
Exploits0References1
OSV
OSV
added 2024/05/31 9:15 p.m.1 views

UBUNTU-CVE-2024-34002

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS5.8AI score0.00475EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.15 views

CVE-2024-34004

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00459EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.21 views

CVE-2024-34005

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.19 views

CVE-2024-34003

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS6.2AI score0.00354EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.17 views

CVE-2024-34002

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References2
OSV
OSV
added 2024/05/31 9:15 p.m.2 views

UBUNTU-CVE-2024-34003

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS5.8AI score0.00354EPSS
Exploits0References3
OSV
OSV
added 2024/05/31 9:15 p.m.1 views

UBUNTU-CVE-2024-34005

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS5.8AI score0.00475EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/05/31 8:23 p.m.18 views

CVE-2024-34004 moodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_wiki backup

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.8AI score0.00459EPSS
Exploits0References1
Rows per page
Query Builder