9 matches found
EUVD-2017-15016
Malware in sbrugna...
Moodle PoodLL Filter plugin cross-site scripting vulnerability
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia.PoodLL is a collection of plug-ins for adding audio and video. A cross-site scripting...
Moodle PoodLL Filter Arbitrary Code Execution Vulnerability
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. An arbitrary code execution vulnerability exists in the Moodle PoodLL filter, which...
CVE-2017-5945
An issue was discovered in the PoodLL Filter plugin through 3.0.20 for Moodle. The vulnerability exists due to insufficient filtration of user-supplied data in the "poodllaudiourl" HTTP GET parameter passed to the "filterpoodllmoodle322016112802/poodll/mp3recorderskins/brazil/index.php" URL. An...
CVE-2017-5945
An issue was discovered in the PoodLL Filter plugin through 3.0.20 for Moodle. The vulnerability exists due to insufficient filtration of user-supplied data in the "poodllaudiourl" HTTP GET parameter passed to the "filterpoodllmoodle322016112802/poodll/mp3recorderskins/brazil/index.php" URL. An...
Authorization
An issue was discovered in the PoodLL Filter plugin through 3.0.20 for Moodle. The vulnerability exists due to insufficient filtration of user-supplied data in the "poodllaudiourl" HTTP GET parameter passed to the "filterpoodllmoodle322016112802/poodll/mp3recorderskins/brazil/index.php" URL. An...
CVE-2017-5945
An issue was discovered in the PoodLL Filter plugin through 3.0.20 for Moodle. The vulnerability exists due to insufficient filtration of user-supplied data in the "poodllaudiourl" HTTP GET parameter passed to the "filterpoodllmoodle322016112802/poodll/mp3recorderskins/brazil/index.php" URL. An...
CVE-2017-5945
The CVE-2017-5945 issue affects the Moodle PoodLL Filter plugin (up to version 3.0.20). The root cause is insufficient filtration of user-supplied data in the poodll_audio_url HTTP GET parameter passed to the filter_poodll_moodle32_2016112802/poodll/mp3recorderskins/brazil/index.php URL. This lea...
JW Player / SVFP / Poodll / RokBox Cross Site Scripting
Hello list! Earlier I've wrote about Content Spoofing and Cross-Site Scripting vulnerabilities in JW Player http://securityvulns.com/docs28176.html. And I've mentioned that there are near million of web sites with vulnerable flash-file - it's only indexed by Google, and in reality there are much...