Lucene search
K

613 matches found

Prion
Prion
added 2018/07/10 6:29 p.m.14 views

Design/Logic Flaw

A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz question bank is imported, it was possible for the question preview that is displayed to execute JavaScript that is written into the question bank...

7.5CVSS7AI score0.02122EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2018/07/10 6:29 p.m.17 views

CVE-2018-10891

A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz question bank is imported, it was possible for the question preview that is displayed to execute JavaScript that is written into the question bank...

7.5CVSS6.6AI score0.02122EPSS
Exploits0References3
seebug.org
seebug.org
added 2018/06/14 12:0 a.m.76 views

Code Injection in Moodle

Moodle is a widely-used open-source e-Learning software with more than 127 million users allowing teachers and students to digitally manage course activities and exchange learning material, often deployed by large universities. In this post we will examine the technical intrinsics of a critical...

0.3AI score
Exploits0
OSV
OSV
added 2018/05/25 12:29 p.m.3 views

UBUNTU-CVE-2018-1133

An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection...

8.8CVSS7.8AI score0.32234EPSS
Exploits5References3
OSV
OSV
added 2018/05/25 12:29 p.m.32 views

CVE-2018-1133

An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection...

8.8CVSS9.3AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/05/25 12:29 p.m.30 views

CVE-2018-1133

An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection...

8.8CVSS7.8AI score0.32234EPSS
Exploits5References2
Prion
Prion
added 2018/05/25 12:29 p.m.17 views

Design/Logic Flaw

An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection...

6.5CVSS9AI score0.32234EPSS
Exploits5References3Affected Software1
NVD
NVD
added 2018/05/25 12:29 p.m.31 views

CVE-2018-1133

An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection...

8.8CVSS9.1AI score0.32234EPSS
Exploits5References3
Cvelist
Cvelist
added 2018/05/25 12:0 p.m.33 views

CVE-2018-1133

An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection...

9AI score0.32234EPSS
Exploits5References3
CNVD
CNVD
added 2018/03/06 12:0 a.m.2 views

SQL injection vulnerability in ask2 Q&A attach.php file

ASK2 Q&A system belongs to the Beijing Zhengying Network Technology Co., Ltd. products , is a set of open source php Q&A system , integration of paid Q&A system , paid voice Q&A system . ask2 Q&A system attach.php file SQL injection vulnerability , attackers can use the vulnerability to obtain...

7.7AI score
Exploits0
OSV
OSV
added 2017/12/27 5:8 p.m.2 views

CVE-2017-17871

The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter...

9.8CVSS5.8AI score0.02652EPSS
Exploits1References1
Prion
Prion
added 2017/12/27 5:8 p.m.12 views

Sql injection

The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter...

7.5CVSS9.8AI score0.02652EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2017/12/27 5:8 p.m.2 views

CVE-2017-17871

The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter...

9.8CVSS5.9AI score0.02652EPSS
Exploits1References2
CNVD
CNVD
added 2017/12/25 12:0 a.m.2 views

JEXTN Question And Answer extension SQL Injection Vulnerability

Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other functions.JEXTN Question And Answer extension is used in one of the online question and answer plug-ins. A SQL injection vulnerability...

9.8CVSS8.2AI score0.02652EPSS
Exploits1References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2017/12/15 3:32 p.m.14 views

JEXTN Question And Answer ,3.1.0,SQL Injection

JEXTN Question And Answer ,3.1.0,SQL Injection...

2.1AI score
Exploits0Affected Software1
0day.today
0day.today
added 2017/12/14 12:0 a.m.32 views

Joomla JEXTN Question And Answer 3.1.0 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component JEXTN Question And Answer 3.1.0 - SQL Injection Dork: N/A Date: 13.12.2017 Vendor Homepage: http://jextn.com/ Software Link:...

7.4AI score
Exploits0
OSV
OSV
added 2017/12/13 9:29 a.m.4 views

CVE-2017-17590

FS Stackoverflow Clone 1.0 has SQL Injection via the /question keywords parameter...

9.8CVSS5.8AI score0.03945EPSS
Exploits1References2
Prion
Prion
added 2017/12/13 9:29 a.m.20 views

Sql injection

FS Stackoverflow Clone 1.0 has SQL Injection via the /question keywords parameter...

7.5CVSS9.9AI score0.03945EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2017/12/13 9:0 a.m.22 views

CVE-2017-17590

FS Stackoverflow Clone 1.0 has SQL Injection via the /question keywords parameter...

10AI score0.03945EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2017/12/13 12:0 a.m.4 views

PT-2017-14885 · Fs · Fs Stackoverflow Clone

Name of the Vulnerable Software and Affected Versions: FS Stackoverflow Clone version 1.0 Description: The issue is related to SQL Injection, which can be exploited via the "/question" API endpoint, specifically through the keywords parameter. This allows for potential unauthorized access to...

9.8CVSS9.4AI score0.03945EPSS
Exploits1References3
Rows per page
Query Builder