Vulnerability Database
289,697
Total vulnerabilities in the database
CVE-2024-34005
In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include.
| Software | From | Fixed in |
|---|---|---|
moodle / moodle
|
4.3.0 | 4.3.4 |
|
moodle / moodle
|
4.2.0 | 4.2.7 |
|
moodle / moodle
|
- | 4.1.10 |
| moodle / moodle | - | 4.1.10 |
| moodle / moodle | 4.2.0 | 4.2.7 |
| moodle / moodle | 4.3.0 | 4.3.4 |