The Moodle platform is used by more than 78,000 e-learning websites from 234 countries. It’s used by schools, universities, and other organizations to set up websites with interactive online courses. Security researcher Netanel Rubin, who found the flaws, published a detailed blog post about them. They don’t seem too critical on their own, but when combined, they allow attackers to create hidden administrative accounts and execute malicious PHP code on the underlying server. The exploit takes advantage of some false assumptions made by the developers, which Rubin described as a logic flaw.”]