| 22-11-2022 |
CVE-2022-45152 - Moodle Blind SSRF in LTI provider library |
| 18-07-2022 |
CVE-2022-35651 - Moodle Stored XSS and blind SSRF possible via SCORM track |
| 07-12-2021 |
CVE-2020-36474 - Vanilla SSRF |
| 05-12-2021 |
HITCON CTF 2021 Metamon-Verse Writeup |
| 22-10-2021 |
Moodle - Stored XSS and blind SSRF possible via feedback answer text |
| 20-08-2021 |
Vanilla - SSRF via media scrape API through dns rebinding |
| 22-07-2021 |
CVE-2021-36396 - Moodle Blind SSRF possible against cURL blocked hosts |
| 17-05-2021 |
3kCTF-2021 - ppaste writeup |
| 16-03-2021 |
CVE-2021-20280 - Moodle Stored XSS and blind SSRF via feedback answer text |
| 31-12-2020 |
CVE-2020-36474 - safecurl <= 3.3, vanilla forum <= 0.9.2 dns rebind to ssrf |
| 25-07-2020 |
3kCTF-2020 - reporter writeup |
