3 matches found
PT-2023-20981 · Jellyfin · Jellyfin
Name of the Vulnerable Software and Affected Versions: Jellyfin versions up to 10.7.7 Description: The issue allows attackers to access network resources and sensitive information via a crafted POST request to the /Repositories component, enabling Server-Side Request Forgery SSRF. This can lead t...
PHP Object Injection
Moodle is vulnerable to PHP object injection and arbitrary code execution. The repositories component of Moodle contains a flaw which allows these attacks through serialized data containing objects defined in an add-on...
CVE-2014-3541
CVE-2014-3541 affects Moodle’s Repositories component across multiple branches (Moodle 2.3.11; 2.4.x < 2.4.11; 2.5.x < 2.5.7; 2.6.x < 2.6.4; 2.7.x