f0ns1

1 exploit Active since Aug 2022
CVE-2020-14321 NOMISEC HIGH WORKING POC
Moodle Teacher Enrollment Privilege Escalation to RCE
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.
2 stars
CVSS 8.8