Lucene search
Veracode Vulnerability DatabaseVERACODE:6396HistoryMay 28, 2018 - 4:14 a.m.
Unauthorized Instantiation And Denial Of Service (DoS)
2018-05-2804:14:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.001
Percentile
35.6%
Moodle is vulnerable to unauthorized instantiation and denial of service (DoS). The authenticated user is allowed to instantiate any class just by changing URLs in portfolios. Guest users can also launch DoS using this flaw.
Related
ubuntucve
ubuntucve
CVE-2018-1137
2018-05-25 00:00:00
prion
prion
Code injection
2018-05-25 12:29:00
cvelist
cvelist
CVE-2018-1137
2018-05-25 12:00:00
nvd
nvd
CVE-2018-1137
2018-05-25 12:29:00
osv
osv
CVE-2018-1137
2018-05-25 12:29:00
Moodle Portfolio script allows instantiation of class chosen by user
2022-05-14 03:16:23
github
github
Moodle Portfolio script allows instantiation of class chosen by user
2022-05-14 03:16:23
cve
cve
CVE-2018-1137
2018-05-25 12:29:00
openvas
openvas
Moodle 3.x Multiple Vulnerabilities (May 2018) - Windows
2018-05-29 00:00:00
Moodle 3.x Multiple Vulnerabilities (May 2018) - Linux
2018-05-29 00:00:00