Back to directory
WRITEUP #865

Playing Dominos with Moodle's Security (1/2)

XSSStored XSSArbitrary folder creationRCESecurity code review
by@YNizry(Yaniv Nizry)
Program
Moodle
Published
Aug 21, 2023
Added to HackDex
Aug 25, 2023
Read Full Writeuphttps://www.sonarsource.com/blog/playing-dominos-with-moodles-security-1/
RELATED WRITEUPS
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities
We hacked Anki - 0 day exploit from studying someone elses flashcards
RCEComponents with known vulnerabilities
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS

Built with ❤️ by Shubham Rawat