Lucene search
UbuntuUSN-658-1HistoryOct 23, 2008 - 12:00 a.m.
Moodle vulnerability
2008-10-2300:00:00
ubuntu.com
42
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
77.4%
Releases
- Ubuntu 8.04
- Ubuntu 7.10
Packages
- moodle -
Details
Lukasz Pilorz discovered that the HTML filtering used in Moodle was not
strict enough. A remote attacker could send malicious requests to Moodle
and execute arbitrary code as the web server user.
References
Related
dsquare
dsquare
Moodle <= 1.8.4 RCE
2012-01-26 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_MOODLE_REXEC
2008-03-25 19:44:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:265 (egroupware)
2009-10-19 00:00:00
Mandrake Security Advisory MDVSA-2009:265 (egroupware)
2009-10-19 00:00:00
Ubuntu Update for moodle vulnerability USN-658-1
2009-03-23 00:00:00
osv
osv
Moodle vulnerable to Cross-site scripting
2022-05-01 23:40:50
moodle - several vulnerabilities
2008-12-22 00:00:00
wordpress - several vulnerabilities
2009-08-23 00:00:00
nessus
nessus
Fedora 8 : moodle-1.8.5-1.fc8 (2008-6226)
2008-07-10 00:00:00
Ubuntu 7.10 / 8.04 LTS : moodle vulnerability (USN-658-1)
2009-04-23 00:00:00
openSUSE 10 Security Update : moodle (moodle-5439)
2008-07-16 00:00:00
ubuntucve
ubuntucve
CVE-2008-1502
2008-03-25 00:00:00
cve
cve
CVE-2008-1502
2008-03-25 19:44:00
debiancve
debiancve
CVE-2008-1502
2008-03-25 19:44:00
prion
prion
Cross site scripting
2008-03-25 19:44:00
github
github
Moodle vulnerable to Cross-site scripting
2022-05-01 23:40:50
securityvulns
securityvulns
[ GLSA 200805-04 ] eGroupWare: Multiple vulnerabilities
2008-05-08 00:00:00
gentoo
gentoo
eGroupWare: Multiple vulnerabilities
2008-05-07 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: moodle-1.8.5-1.fc8
2008-07-09 02:50:05
debian
debian
[SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities
2008-12-22 08:27:17
[SECURITY] [DSA 1871-2] New wordpress packages fix regression
2009-08-27 01:39:01
[SECURITY] [DSA 1871-1] New wordpress packages fix several vulnerabilities
2009-08-23 03:41:14
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
77.4%
Related for USN-658-1