A flaw was found in Moodle versions 3.8 prior to 3.8.3, 3.7 prior to 3.7.6, 3.6 prior to 3.6.10, 3.5 prior to 3.5.12 and previous versions unsupported versions. It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle |