CVE-2011-4581

2012-07-2010:40:35

CWE-200

redhat

web.nvd.nist.gov

cve-2011-4581

moodle

pagelib.php

remote authenticated users

username discovery

history interface

deletion interface

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

46.9%

JSON

mod/wiki/pagelib.php in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 allows remote authenticated users to discover the username of a wiki creator by visiting the history and deletion user interface.

Affected configurations

Nvd

Node

moodlemoodleMatch2.0.0

moodlemoodleMatch2.0.1

moodlemoodleMatch2.0.2

moodlemoodleMatch2.0.3

moodlemoodleMatch2.0.4

moodlemoodleMatch2.0.5

Node

moodlemoodleMatch2.1.0

moodlemoodleMatch2.1.1

moodlemoodleMatch2.1.2

VendorProductVersionCPE
moodlemoodle2.0.0cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*
moodlemoodle2.0.1cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*
moodlemoodle2.0.2cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*
moodlemoodle2.0.3cpe:2.3:a:moodle:moodle:2.0.3:*:*:*:*:*:*:*
moodlemoodle2.0.4cpe:2.3:a:moodle:moodle:2.0.4:*:*:*:*:*:*:*
moodlemoodle2.0.5cpe:2.3:a:moodle:moodle:2.0.5:*:*:*:*:*:*:*
moodlemoodle2.1.0cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*
moodlemoodle2.1.1cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*
moodlemoodle2.1.2cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
moodle	moodle	2.0.0	cpe:2.3:a:moodle:moodle:2.0.0:::::::*
moodle	moodle	2.0.1	cpe:2.3:a:moodle:moodle:2.0.1:::::::*
moodle	moodle	2.0.2	cpe:2.3:a:moodle:moodle:2.0.2:::::::*
moodle	moodle	2.0.3	cpe:2.3:a:moodle:moodle:2.0.3:::::::*
moodle	moodle	2.0.4	cpe:2.3:a:moodle:moodle:2.0.4:::::::*
moodle	moodle	2.0.5	cpe:2.3:a:moodle:moodle:2.0.5:::::::*
moodle	moodle	2.1.0	cpe:2.3:a:moodle:moodle:2.1.0:::::::*
moodle	moodle	2.1.1	cpe:2.3:a:moodle:moodle:2.1.1:::::::*
moodle	moodle	2.1.2	cpe:2.3:a:moodle:moodle:2.1.2:::::::*