Install Plugin from ZIP - This is a functionality that allows an authenticated user to install arbitrary (modded) extensions and so, remotely run PHP commands on the server. You need elevated privi…

Python 1 Updated Dec 8, 2021

UDPsycho / Moodle-CVE-2018-1042

Script to exploit CVE-2018-1042 in order to do internal port scans.

Python 2 Updated Aug 30, 2022

vfremaux / moodle-local_multiroot

Allows exploiting a moodle from distinct base domains

PHP 2 Updated Apr 30, 2023

f0ns1 / CVE-2020-14321-modified-exploit

Modified Moodle exploit for privilege escalation (Dorvack)

Python 1 Updated Feb 1, 2022

kiks7 / moodle_ssrf_exploits

Python 2 Updated Dec 3, 2022

Patryk-S-W / Moodle-RCE-exploit

JavaScript 2 Updated Jun 20, 2020

V1n1v131r4 / Exploit-XSS-Polyglot-on-Moodle-3.9.2

This PoC describe how to exploit XSS on Moodle 3.9.2 with Polyglot payload.

4 1 Updated May 19, 2021

omergoc / moodle-cookies-exploit

Moodle Cookies Çalışıcı Python

Python 2 Updated Oct 11, 2022

danielthatcher / moodle-login-csrf

Scripts for exploiting MSA-18-0020 (CVE-2018-16854) and MSA-19-0004 (CVE-2019-3847)

PHP 7 Updated Jul 21, 2019

p0dalirius / Moodle-webshell-plugin

A webshell plugin and interactive shell for pentesting a Moodle instance.

PHP 29 3 Updated Feb 11, 2025

T0X1Cx / CVE-2021-36396-Exploit

This script demonstrates a time-based blind SQL injection on Moodle platforms, exploiting response delays to extract data.

Python 18 3 Updated Jul 7, 2024

ahussam / Moodle-xss-to-rce-exploit

Moodle exploit that turns XSS to RCE

JavaScript 8 1 Updated May 26, 2020

claudiosv / toodlemoodle

A simple CLI tool 🔨 for analyzing and attacking Moodle installations for pentesters 🔪using various publicly available exploits. Developed using Crystal 💎, the fast, natively compiled Ruby lookalike.

Crystal 3 Updated Jul 10, 2019

DoMINAToR98 / HTB_Box_Writeups

Retired box writeups

6 3 Updated Oct 1, 2019

bbhunter / all_in_one_place

Forked from arbazkiraak/all_in_one_place

1 Updated Apr 26, 2023

DeffoN0tSt3 / PocOrExp_in_Github

Forked from ycdxsb/PocOrExp_in_Github

Auto Collect Poc Or Exp from Github by CVE ID.

Python 1 Updated May 14, 2023

NoThrowForwardIt / awesome-pentest-tools

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set wil…

52 14 Updated Mar 28, 2017

aungsanoo / auto-sql-dork-scanner

Python 7 5 Updated Jan 4, 2018

mfazrinizar / FazScan

| FazScan is a Perl program to do some vulnerability scanning and pentesting |

Perl 80 32 Updated Jun 16, 2019

Chocapikk / CVE-2023-30943

A Python-based tool to detect the CVE-2023-30943 vulnerability in Moodle, which allows unauthorized folder creation via specially crafted requests in TinyMCE loaders.

Python 12 3 Updated Sep 7, 2023

attacker-codeninja / Workflow-Bug-Bounty

Forked from xElkomy/Workflow-Bug-Bounty

My Tools For Bug Bounty

Shell 6 2 Updated Sep 25, 2024

pierce403 / droopescan

Forked from SamJoan/droopescan

A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.

Python 5 Updated Mar 28, 2018

bdecentgmbh / moodle-auth_magic

Magic authentication plugin for Moodle

PHP 6 1 Updated Dec 11, 2024

exitmsconfig / engineering-Box

engineering Box (简称 - engineering) 是一个集合github平台上的安全行业从业者自研开源扫描器的仓库，包括子域名枚举、数据库漏洞扫描、弱口令或信息泄漏扫描、端口扫描、指纹识别以及其他大型扫描器或模块化扫描器，同时该仓库只收录各位安全行业从业者自己编写的一般性开源扫描器，类似awvs、nmap、w3af等知名扫描工具不收录，收集全球各位同仁爱好者维护项目

169 46 Updated Feb 22, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

syper4

Block or report syper4

Lists (1)

🚀 My stack

Stars

defog-ai / sql-eval

AkiChase / scrcpy-mask

HoangKien1020 / Moodle_RCE

darrynten / MoodleExploit

lavclash75 / CVE-2021-36394-Pre-Auth-RCE-in-Moodle

3mrgnc3 / Moodle_3.9_RCE_AutoPwn

PierfrancescoConti / RCE-moodle-install-plugin-from-zip