Lucene search
CVE-2013-2242
mod/chat/gui_sockets/index.php in Moodle does not consider mod/chat:chat capability, leading to unauthorized access
Show more
| Reporter | Title | Published | Views | Family All 20 |
|---|---|---|---|---|
 | Access Restriction Bypass | 21 Jul 201707:09 | – | veracode |
 | CVE-2013-2242 | 26 Jul 201322:00 | – | cvelist |
 | Design/Logic Flaw | 29 Jul 201313:59 | – | prion |
 | CVE-2013-2242 | 29 Jul 201313:59 | – | nvd |
 | CVE-2013-2242 | 29 Jul 201300:00 | – | ubuntucve |
 | Fedora 18 : moodle-2.3.8-2.fc18 (2013-12950) | 23 Jul 201300:00 | – | nessus |
| Fedora 17 : moodle-2.2.11-1.fc17 (2013-13252) | 31 Jul 201300:00 | – | nessus |
| Fedora 19 : moodle-2.4.5-2.fc19 (2013-12964) | 23 Jul 201300:00 | – | nessus |
 | Updated moodle package fixes multiple security vulnerabilities | 21 Jul 201312:38 | – | mageia |
 | [SECURITY] Fedora 19 Update: moodle-2.4.5-2.fc19 | 23 Jul 201301:09 | – | fedora |
10
Node
Node
Node
Node
| Source | Link |
|---|---|
| git | www.git.moodle.org/gw |
| moodle | www.moodle.org/mod/forum/discuss.php |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| mod/chat:chat | path | /mod/chat/gui_sockets/index.php | Bypass intended access restrictions in Moodle chat module allowing remote authenticated users to access chat functionality without proper authorization. | CWE-264 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo29 Jul 2013 13:59Current
6.1Medium risk
Vulners AI Score6.1
CVSS24
EPSS0.00156