Moodle CVE-2018-14630 Remote Code Execution Vulnerability
BID:105354
CVE-2018-14630 |Info
Moodle CVE-2018-14630 Remote Code Execution Vulnerability
| Bugtraq ID: | 105354 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-14630 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 17 2018 12:00AM |
| Updated: | Sep 17 2018 12:00AM |
| Credit: | Johannes Moritz |
| Vulnerable: |
Moodle Moodle 3.5.1 Moodle Moodle 3.4.4 Moodle Moodle 3.4.3 Moodle Moodle 3.4.2 Moodle Moodle 3.3.1 Moodle Moodle 3.1.13 Moodle Moodle 3.1.12 Moodle Moodle 3.1.11 Moodle Moodle 3.1.10 Moodle Moodle 3.1.9 Moodle Moodle 3.1.7 Moodle Moodle 3.1.4 Moodle Moodle 3.1.3 Moodle Moodle 3.1.2 Moodle Moodle 3.1.1 Moodle Moodle 3.5 Moodle Moodle 3.4.1 Moodle Moodle 3.4 Moodle Moodle 3.1.8 Moodle Moodle 3.1.6 Moodle Moodle 3.1.5 Moodle Moodle 3.1 |
| Not Vulnerable: |
Moodle Moodle 3.5.2 Moodle Moodle 3.4.5 Moodle Moodle 3.1.14 |
Discussion
Moodle CVE-2018-14630 Remote Code Execution Vulnerability
Moodle is prone to a remote code-execution vulnerability.
Successful exploits may allow an attacker to inject and run arbitrary code in the context of the user.
Moodle versions 3.5 through 3.5.1, 3.4 through 3.4.4, 3.1 through 3.1.13 and prior are vulnerable.
Moodle is prone to a remote code-execution vulnerability.
Successful exploits may allow an attacker to inject and run arbitrary code in the context of the user.
Moodle versions 3.5 through 3.5.1, 3.4 through 3.4.4, 3.1 through 3.1.13 and prior are vulnerable.
References
Moodle CVE-2018-14630 Remote Code Execution Vulnerability
References:
References: