Lucene search
RedhatCVELIST:CVE-2015-5267HistoryFeb 22, 2016 - 2:00 a.m.
CVE-2015-5267
2016-02-2202:00:00
redhat
www.cve.org
4
lib/moodlelib.php in Moodle through 2.6.11, 2.7.x before 2.7.10, 2.8.x before 2.8.8, and 2.9.x before 2.9.2 relies on the PHP mt_rand function to implement the random_string and complex_random_string functions, which makes it easier for remote attackers to predict password-recovery tokens via a brute-force approach.
Related
nvd
nvd
CVE-2015-5267
2016-02-22 05:59:07
cve
cve
CVE-2015-5267
2016-02-22 05:59:07
osv
osv
Moodle uses predictable password-recovery tokens
2022-05-13 01:12:47
veracode
veracode
Predictable Password Recovery
2017-07-26 03:04:39
ubuntucve
ubuntucve
CVE-2015-5267
2016-02-22 00:00:00
prion
prion
Code injection
2016-02-22 05:59:00
github
github
Moodle uses predictable password-recovery tokens
2022-05-13 01:12:47
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0381)
2015-10-15 00:00:00
Fedora Update for moodle FEDORA-2015-2
2015-12-12 00:00:00
mageia
mageia
Updated moodle packages fix security vulnerabilities
2015-09-23 22:42:52
freebsd
freebsd
moodle -- multiple vulnerabilities
2015-09-14 00:00:00
nessus
nessus
FreeBSD : moodle -- multiple vulnerabilities (c2fcbec2-5daa-11e5-9909-002590263bf5)
2015-09-18 00:00:00
Fedora 23 : moodle-2.9.3-1.fc23 (2015-98fc0d20ad)
2016-03-04 00:00:00