Lucene search
GoogleOSV:GHSA-XMWV-MQH8-4XGWHistoryMay 13, 2022 - 1:12 a.m.
Moodle allows remote attackers to read arbitrary files
2022-05-1301:12:40
Google
osv.dev
8
moodle
remote attack
file read
xml
xxe
security vulnerability
mod/lti/service.php in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Related
veracode
veracode
XML External Entity (XXE)
2017-07-25 05:26:58
prion
prion
Xxe
2014-07-29 11:10:00
nvd
nvd
CVE-2014-3542
2014-07-29 11:10:31
cve
cve
CVE-2014-3542
2014-07-29 11:10:31
ubuntucve
ubuntucve
CVE-2014-3542
2014-07-29 00:00:00
github
github
Moodle allows remote attackers to read arbitrary files
2022-05-13 01:12:40
cvelist
cvelist
CVE-2014-3542
2014-07-29 10:00:00
nessus
nessus
Moodle < 2.4 / 2.4.x < 2.4.11 / 2.5.x < 2.5.7 / 2.6.x < 2.6.4 / 2.7.x < 2.7.1 Multiple Vulnerabilities
2015-04-20 00:00:00
Fedora 20 : moodle-2.5.7-1.fc20 (2014-8601)
2014-07-31 00:00:00
Fedora 19 : moodle-2.4.11-1.fc19 (2014-8609)
2014-07-31 00:00:00
mageia
mageia
Updated moodle package fixes security vulnerabilities
2014-08-06 00:08:48
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0308)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2014-10802
2014-10-01 00:00:00
Fedora Update for moodle FEDORA-2014-15102
2014-11-26 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: moodle-2.5.9-1.fc20
2014-11-25 15:30:01
[SECURITY] Fedora 20 Update: moodle-2.5.7-1.fc20
2014-07-30 07:03:13
[SECURITY] Fedora 20 Update: moodle-2.5.8-1.fc20
2014-09-25 10:46:26