EUVD-2023-2868

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-5539

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers. CVE-2023-5539 Note that Nessus...

BIT-MOODLE-2024-45691 Moodle: lesson activity password bypass through php loose comparison

A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values...

GHSA-XFV7-H2QG-RJM7 Moodle Lesson activity password bypass through PHP loose comparison

A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values...

Moodle Lesson activity password bypass through PHP loose comparison

A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values...

CVE-2024-45691

A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values...

CVE-2024-45691 Moodle: lesson activity password bypass through php loose comparison

A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values...

CVE-2024-45691 Moodle: lesson activity password bypass through php loose comparison

A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values...

BIT-MOODLE-2023-5539 Moodle: authenticated remote code execution risk in lesson

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

Remote Code Execution

Moodle is vulnerable to Remote Code Execution. The vulnerability is due to improper sanitization of objects in the lesson activity. The issue can be exploited by the attacker to gain remote code execution...

Moodle Code Injection vulnerability

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

CVE-2023-5539

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

CVE-2023-5539

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

Remote code execution

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

UBUNTU-CVE-2023-5539

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

CVE-2023-5539

The provided documents confirm a remote code execution risk in the Moodle Lesson activity (CVE-2023-5539). Reported as an authenticated issue, by default accessible to teachers/managers, it indicates potential RCE via the Lesson activity. No concrete technical exploit vector, vulnerable version r...

CVE-2023-5539 Moodle: authenticated remote code execution risk in lesson

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

CVE-2023-5539 Moodle: authenticated remote code execution risk in lesson

A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...

PT-2023-6940 · Moodle · Moodle

Name of the Vulnerable Software and Affected Versions: Moodle affected versions not specified Description: A remote code execution risk was identified in the Lesson activity of Moodle. This issue is related to incorrect code generation management. By default, the Lesson activity was only availabl...

Moodle < 3.9.24, 3.11.x < 3.11.17, 4.0.x < 4.0.11, 4.1.x < 4.1.6, 4.2.x < 4.2.3 Multiple Vulnerabilities

Moodle is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle"; ifdescription...