CVE-2025-3642 – Moodle EQUELLA Remote Code Execution Vulnerability

April 25, 2025

CVE ID : CVE-2025-3642

Published : April 25, 2025, 3:15 p.m. | 28 minutes ago

Description : A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS EQUELLA repository. By default, this was only available to teachers and managers on sites with the EQUELLA repository enabled.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleAMD Radeon graphics driver brings FSR 4 support to The Elder Scrolls IV: Oblivion Remastered and Assassin’s Creed Shadows

Next Article CVE-2025-3641 – Moodle Dropbox Repository Remote Code Execution Vulnerability

Highlights

CVE-2025-5497 – Slackero PHPWCMS Feedimport Module Deserialization Vulnerability

June 3, 2025

CVE ID : CVE-2025-5497

Published : June 3, 2025, 1:15 p.m. | 2 hours, 14 minutes ago

Description : A vulnerability was found in slackero phpwcms up to 1.9.45/1.10.8. It has been declared as critical. This vulnerability affects unknown code of the file include/inc_module/mod_feedimport/inc/processing.inc.php of the component Feedimport Module. The manipulation of the argument cnt_text leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.9.46 and 1.10.9 is able to address this issue. It is recommended to upgrade the affected component.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-3642 – Moodle EQUELLA Remote Code Execution Vulnerability

Graphite Spyware Exploits Apple iOS Zero-Click Vulnerability to Attack Journalists

PoC Exploit Released for Critical WebDAV 0-Day RCE Vulnerability Exploited by APT Hackers

5 AI-Powered Tools to Automate Your Browser Tasks

Remote Code Execution & Privilege Escalation: Two New Threats in CISA’s KEV

¿Por que no pytest no encuentra las pruebas? “collected 0 items “

CVE-2025-46755 – Apache HTTP Server SQL Injection

CVE-2025-5497 – Slackero PHPWCMS Feedimport Module Deserialization Vulnerability

CVE-2025-44904 – Apache HDF5 Heap Buffer Overflow

CVE-2025-4363 – iSourcecode Gym Management System SQL Injection Vulnerability

Microsoft says Edge 134 is the fastest version of the browser ever

CVE-2025-3642 – Moodle EQUELLA Remote Code Execution Vulnerability

Related Posts