CVE-2013-1836

2013-03-25T21:55:00
ID CVE-2013-1836
Type cve
Reporter cve@mitre.org
Modified 2013-12-05T05:25:00

Description

Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not properly manage privileges for WebDAV repositories, which allows remote authenticated users to read, modify, or delete arbitrary site-wide repositories by leveraging certain read access.