Moodle.Admin.Shell.Upload
Description
This indicate an attempt to upload an Remote PHP shell into a Moodle via an authenticated user.
A Remote PHP shell is a malicious script, acting as a backdoor, that can be uploaded to a web server to enable remote administration of the machine.
Affected Products
Moodle server
Impact
System Compromise: Remote attacker can gain control of vulnerable systems.
Recommended Actions
Block the upload of the Remote PHP shell script
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |