Lucene search
K

209 matches found

Veracode
Veracode
added 2024/06/07 7:33 a.m.13 views

Exposure Of Sensitive Information To An Unauthorized Actor

Moodle is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. The vulnerability is due to misconfiguration in a shared hosting environment, allowing a user with access to restore workshop modules and direct access to the web server outside of the Moodle webroot to execute a...

5.9CVSS6.4AI score0.00354EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/06/07 7:23 a.m.17 views

Information Exposure Through Misconfigured Permissions

Moodle is vulnerable to a Information Exposure Through Misconfigured Permissions. The vulnerability is due to misconfiguration in a shared hosting environment, allowing a user with access to restore feedback modules and direct access to the web server outside of the Moodle webroot to execute a...

6.5CVSS6.4AI score0.00475EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/06/07 4:59 a.m.4 views

Exposure Of Sensitive Information To An Unauthorized Actor

moodle/moodle is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. The vulnerability is due to a misconfigured shared hosting environment that allows access to other users' content. This allows an attacker to execute arbitrary local file includes by restoring wiki modules...

6.5CVSS6.8AI score0.00459EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/05/31 9:30 p.m.16 views

GHSA-JG4F-8W9X-JV35 Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS5.9AI score0.00354EPSS
Exploits0References4
OSV
OSV
added 2024/05/31 9:30 p.m.18 views

GHSA-MM9P-XWFM-3FQF Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

7.1CVSS6.6AI score0.00475EPSS
Exploits0References4
OSV
OSV
added 2024/05/31 9:30 p.m.28 views

GHSA-Q3CM-CCRM-2MR6 Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS8.8AI score0.00459EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/05/31 9:30 p.m.27 views

Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2024/05/31 9:30 p.m.24 views

Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS6.4AI score0.00354EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2024/05/31 9:30 p.m.18 views

Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.4AI score0.00459EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/05/31 9:30 p.m.20 views

Moodle Authenticated LFI risk in some misconfigured shared hosting environments

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/05/31 9:15 p.m.18 views

CVE-2024-34004

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00459EPSS
Exploits0References1
NVD
NVD
added 2024/05/31 9:15 p.m.18 views

CVE-2024-34002

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References1
NVD
NVD
added 2024/05/31 9:15 p.m.27 views

CVE-2024-34003

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS6.5AI score0.00354EPSS
Exploits0References1
NVD
NVD
added 2024/05/31 9:15 p.m.29 views

CVE-2024-34005

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.4AI score0.00475EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.22 views

CVE-2024-34003

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

5.9CVSS6.2AI score0.00354EPSS
Exploits0References2
OSV
OSV
added 2024/05/31 9:15 p.m.9 views

UBUNTU-CVE-2024-34002

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS5.8AI score0.00475EPSS
Exploits0References3
OSV
OSV
added 2024/05/31 9:15 p.m.3 views

UBUNTU-CVE-2024-34005

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS5.8AI score0.00475EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.18 views

CVE-2024-34002

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore feedback modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00475EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/05/31 9:15 p.m.16 views

CVE-2024-34004

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS6.5AI score0.00459EPSS
Exploits0References2
OSV
OSV
added 2024/05/31 9:15 p.m.13 views

UBUNTU-CVE-2024-34004

In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore wiki modules and direct access to the web server outside of the Moodle webroot could execute a local file include...

6.5CVSS5.8AI score0.00459EPSS
Exploits0References3
Rows per page
Query Builder