Lucene search
China National Vulnerability DatabaseCNVD-2021-93378HistoryNov 17, 2021 - 12:00 a.m.
Moodle permission permission and access control issue vulnerability (CNVD-2021-93378)
2021-11-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
0.001 Low
EPSS
Percentile
34.4%
Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. moodle has a permission permission and access control issue vulnerability that stems from insufficient detection of functionality in the web calendar service, which allows an attacker to access other users’ calendar operation events.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Moodle Moodle | le | 3.8.8 | |
| Moodle Moodle >=3.9.0, | lt | 3.9.11 | |
| Moodle Moodle >=3.10.0, | lt | 3.10.8 | |
| Moodle Moodle >=3.11.0, | lt | 3.11.4 |
Related
cvelist
cvelist
CVE-2021-43560
2021-11-22 16:00:22
nvd
nvd
CVE-2021-43560
2021-11-22 16:15:08
veracode
veracode
Remote Code Execution (RCE)
2021-11-23 07:39:47
github
github
Moodle Insecure direct object reference (IDOR) in a calendar web service
2022-05-24 19:21:10
prion
prion
Design/Logic Flaw
2021-11-22 16:15:00
osv
osv
BIT-moodle-2021-43560
2024-03-06 11:06:24
Moodle Insecure direct object reference (IDOR) in a calendar web service
2022-05-24 19:21:10
CVE-2021-43560
2021-11-22 16:15:08
cve
cve
CVE-2021-43560
2021-11-22 16:15:08
ubuntucve
ubuntucve
CVE-2021-43560
2021-11-22 00:00:00
nessus
nessus
Moodle 3.9.x < 3.9.11 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.10.x < 3.10.8 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.11.x < 3.11.4 Multiple Vulnerabilities
2023-02-20 00:00:00
openvas
openvas
Moodle < 3.9.11, 3.10.x < 3.10.8, 3.11.x < 3.11.4 Multiple Vulnerabilities
2021-11-23 00:00:00