Lucene search
Ubuntu.comUB:CVE-2023-28333HistoryMar 23, 2023 - 12:00 a.m.
CVE-2023-28333
2023-03-2300:00:00
ubuntu.com
ubuntu.com
16
cve-2023-28333
user input risk
moodle lms
unix
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
70.7%
The Mustache pix helper contained a potential Mustache injection risk if
combined with user input (note: This did not appear to be
implemented/exploitable anywhere in the core Moodle LMS).
Related
cvelist
cvelist
CVE-2023-28333 Moodle: pix helper potential mustache code injection risk
2023-03-23 00:00:00
veracode
veracode
Arbitrary Code Injection
2023-03-30 08:05:35
nvd
nvd
CVE-2023-28333
2023-03-23 21:15:20
vulnrichment
vulnrichment
CVE-2023-28333 Moodle: pix helper potential mustache code injection risk
2023-03-23 00:00:00
prion
prion
Code injection
2023-03-23 21:15:00
osv
osv
BIT-moodle-2023-28333
2024-03-06 11:00:15
Moodle's Mustache pix helper contained a potential Mustache injection risk if combined with user input
2023-03-23 21:30:18
CVE-2023-28333
2023-03-23 21:15:20
cve
cve
CVE-2023-28333
2023-03-23 21:15:20
github
github
openvas
openvas
Moodle 3.9 < 3.9.20, 3.11 < 3.11.13, 4.0 < 4.0.7, 4.1 < 4.1.2 Multiple Vulnerabilities
2023-03-24 00:00:00
Fedora: Security Advisory for moodle (FEDORA-2023-d9c13996b2)
2023-03-31 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: moodle-3.11.13-1.fc36
2023-03-30 01:16:28
nessus
nessus
Fedora 36 : moodle (2023-d9c13996b2)
2023-03-30 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
70.7%
Related for UB:CVE-2023-28333