Lucene search
Veracode Vulnerability DatabaseVERACODE:4550HistoryJul 07, 2017 - 10:32 a.m.
Remote Code Execution (RCE) Through Deserialization
2017-07-0710:32:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
EPSS
0.003
Percentile
68.1%
Moodle is vulnerable to remote code execution (RCE) attacks. The library does not properly deserialize the description of an external badge, allowing a malicious user to inject and execute PHP objects.
Related
nessus
nessus
Moodle 'external.php' 'badge' Parameter XSS
2013-09-20 00:00:00
packetstorm
packetstorm
Moodle CMS 2.5.0-1 Cross Site Scripting
2013-09-16 00:00:00
nvd
nvd
CVE-2013-5674
2013-09-16 13:02:48
prion
prion
Design/Logic Flaw
2013-09-16 13:02:00
cvelist
cvelist
CVE-2013-5674
2013-09-16 10:00:00
zdt
zdt
Moodle CMS 2.5.0-1 Cross Site Scripting Vulnerability
2013-09-17 00:00:00
cve
cve
CVE-2013-5674
2013-09-16 13:02:48
ubuntucve
ubuntucve
CVE-2013-5674
2013-09-16 00:00:00
securityvulns
securityvulns