Lucene search

K
githubGitHub Advisory DatabaseGHSA-468Q-9CMP-76WC
HistoryMay 13, 2022 - 1:12 a.m.

Moodle does not consider the moodle/tag:edit capability before adding a tag

2022-05-1301:12:43
GitHub Advisory Database
github.com
5
moodle
tag
authentication
bypass
vulnerability

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

46.9%

tag/tag_autocomplete.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 does not consider the moodle/tag:edit capability before adding a tag, which allows remote authenticated users to bypass intended access restrictions via an AJAX request.

Affected configurations

Vulners
Node
moodlemoodleRange<2.7.3
OR
moodlemoodleRange<2.6.6
OR
moodlemoodleRange<2.5.9
VendorProductVersionCPE
moodlemoodle*cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

46.9%