Lucene search
CVE-2014-0125
repository/alfresco/lib.php in Moodle through 2.3.11, 2.4.x before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 places a session key in a URL, which allows remote attackers to bypass intended Alfresco Repository file restrictions by impersonating a file's owner
Show more
| Reporter | Title | Published | Views | Family All 34 |
|---|---|---|---|---|
 | Design/Logic Flaw | 24 Mar 201414:20 | – | prion |
 | CVE-2014-0125 | 22 Mar 201401:00 | – | cvelist |
 | Impersonation Attack | 14 Jul 201708:57 | – | veracode |
 | CVE-2014-0125 | 24 Mar 201400:00 | – | ubuntucve |
 | Moodle places a session key in a URL | 13 May 202201:12 | – | github |
 | Moodle places a session key in a URL | 13 May 202201:12 | – | osv |
 | CVE-2014-0125 | 24 Mar 201414:20 | – | nvd |
 | Fedora 20 : moodle-2.5.5-1.fc20 (2014-4163) | 31 Mar 201400:00 | – | nessus |
| Moodle 2.4.x < 2.4.9 Multiple Vulnerabilities | 21 Jul 201600:00 | – | nessus |
| Fedora 19 : moodle-2.4.9-1.fc19 (2014-4152) | 31 Mar 201400:00 | – | nessus |
10
Node
OROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROROR
| Source | Link |
|---|---|
| moodle | www.moodle.org/mod/forum/discuss.php |
| openwall | www.openwall.com/lists/oss-security/2014/03/17/1 |
| git | www.git.moodle.org/gw |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo24 Mar 2014 14:20Current
6.4Medium risk
Vulners AI Score6.4
CVSS25.8
EPSS0.00253