CVE-2016-9186 in Moodleالمعلومات

الملخص

بحسب MITRE

Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

04/11/2016

إفشاء

04/11/2016

الاعتدال

تمت الموافقة

إدخال

VDB-93325

CPE

جاهز

CWE

CWE-434 (مؤكد)

CVSS

8.8 (NVD)

EPSS

0.02078

KEV

لا

النشاطات

منخفض جدًا

القطاع

Education, Police

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9186
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9186
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9186/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!