Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2014-3541 - Vulnerability Database
Moodle

Moodle Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2014-3541

High
Reference: CVE-2014-3541
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-3541
Title: Moodle Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

The Repositories component in Moodle through 2.3.11 2.4.x before 2.4.11 2.5.x before 2.5.7 2.6.x before 2.6.4 and 2.7.x before 2.7.1 allows remote attackers to conduct PHP object injection attacks and execute arbitrary code via serialized data associated with an add-on.