Lucene search
RedhatCVE-2012-6102HistoryJan 27, 2013 - 10:55 p.m.
CVE-2012-6102
2013-01-2722:55:03
CWE-264
redhat
web.nvd.nist.gov
21
cve-2012-6102
nvd
moodle
remote code execution
security vulnerability
uri crafted attack
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.003
Percentile
69.2%
lib.php in the Submission comments plugin in the Assignment module in Moodle 2.3.x before 2.3.4 and 2.4.x before 2.4.1 allows remote attackers to read or modify the submission comments (aka feedback comments) of arbitrary users via a crafted URI.
Affected configurations
Node
moodlemoodleMatch2.3.0
ORmoodlemoodleMatch2.3.1
ORmoodlemoodleMatch2.3.2
ORmoodlemoodleMatch2.3.3
Node
moodlemoodleMatch2.4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| moodle | moodle | 2.3.0 | cpe:2.3:a:moodle:moodle:2.3.0:*:*:*:*:*:*:* |
| moodle | moodle | 2.3.1 | cpe:2.3:a:moodle:moodle:2.3.1:*:*:*:*:*:*:* |
| moodle | moodle | 2.3.2 | cpe:2.3:a:moodle:moodle:2.3.2:*:*:*:*:*:*:* |
| moodle | moodle | 2.3.3 | cpe:2.3:a:moodle:moodle:2.3.3:*:*:*:*:*:*:* |
| moodle | moodle | 2.4.0 | cpe:2.3:a:moodle:moodle:2.4.0:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2012-6102
2013-01-27 00:00:00
veracode
veracode
Information Disclosure
2017-06-07 07:03:05
nvd
nvd
CVE-2012-6102
2013-01-27 22:55:03
prion
prion
Code injection
2013-01-27 22:55:00
cvelist
cvelist
CVE-2012-6102
2013-01-27 22:00:00
nessus
nessus
Moodle 2.3.x < 2.3.4 Multiple Vulnerabilities
2016-07-21 00:00:00
Moodle 2.4.x < 2.4.1 Multiple Vulnerabilities
2016-07-21 00:00:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.003
Percentile
69.2%
Related for CVE-2012-6102