CVE-2009-4300

2009-12-15T20:30:00
ID CVE-2009-4300
Type cve
Reporter NVD
Modified 2009-12-16T00:00:00

Description

Multiple unspecified authentication plugins in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 store the MD5 hashes for passwords in the user table, even when the cached hashes are not used by the plugin, which might make it easier for attackers to obtain credentials via unspecified vectors.