Vulnerabilities > CVE-2021-21809 - Unspecified vulnerability in Moodle 3.10.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
A command execution vulnerability exists in the default legacy spellchecker plugin in Moodle 3.10. A specially crafted series of HTTP requests can lead to command execution. An attacker must have administrator privileges to exploit this vulnerabilities.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |