In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with both access to restore workshop modules and direct access to the web server outside of the Moodle webroot could execute a local file include.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: fedora

Published: 2024-05-31T20:19:00.553Z

Updated: 2024-08-02T02:42:59.891Z

Reserved: 2024-04-29T13:02:30.267Z

Link: CVE-2024-34003

cve-icon Vulnrichment

Updated: 2024-08-02T02:42:59.891Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-31T21:15:09.240

Modified: 2024-11-21T09:17:53.290

Link: CVE-2024-34003

cve-icon Redhat

No data.