10 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-9186
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unrestricted file upload vulnerability in the legacy course files and file manager modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrar...
CVE-2016-9186
Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors...
CVE-2016-9186
Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors...
CVE-2016-9187
Unrestricted file upload vulnerability in the double extension support in the "image" module in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors...
CVE-2016-9186
Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors...
CVE-2016-9187
CVE-2016-9187: Unrestricted file upload in Moodle 3.1.2 image module due to double-extension handling allows remote authenticated users to execute arbitrary code by uploading an executable and accessing it via an unspecified vector. Connected documents corroborate the vulnerability and indicate a...
CVE-2016-9186
CVE-2016-9186 affects Moodle 3.1.2 in the legacy course files and file manager modules. It is an unjustified unrestricted file upload vulnerability where remote authenticated users can upload a file with an executable extension and then access it via unspecified vectors to achieve code execution....
CVE-2016-7919
Moodle 3.1.2 allows remote attackers to obtain sensitive information via unspecified vectors, related to a "SQL Injection" issue affecting the Administration panel function in the installation process component. NOTE: the vendor disputes the relevance of this report, noting that "the person who i...
CVE-2016-7919
Moodle 3.1.2 allows remote attackers to obtain sensitive information via unspecified vectors, related to a "SQL Injection" issue affecting the Administration panel function in the installation process component. NOTE: the vendor disputes the relevance of this report, noting that "the person who i...
PT-2016-7433 · Moodle · Moodle
Name of the Vulnerable Software and Affected Versions: Moodle version 3.1.2 Description: The issue allows remote attackers to obtain sensitive information via unspecified vectors, related to a SQL Injection issue affecting the Administration panel function in the installation process component. T...