Lucene search

Moodle does not properly validate module instance id

🗓️ 01 May 2022 07:24:23Reported by GitHub Advisory DatabaseType

Moodle 1.6.2 does not validate module instance ID, allowing for unspecified impact and remote attack

Reporter	Title	Published	Views	Family All 5
OSV	Moodle does not properly validate module instance id	1 May 202207:23	–	osv
UbuntuCve	CVE-2006-4936	23 Sep 200600:00	–	ubuntucve
NVD	CVE-2006-4936	23 Sep 200600:07	–	nvd
Cvelist	CVE-2006-4936	23 Sep 200600:00	–	cvelist
CVE	CVE-2006-4936	23 Sep 200600:07	–	cve

Vulners

Node

moodle moodleRange<1.6.2

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2006-4936
github	www.github.com/moodle/moodle/commit/0f69811d980002709668a2001477a811bfee4bab
web	www.web.archive.org/web/20061230195936/http://docs.moodle.org/en/Release_notes
github	www.github.com/advisories/GHSA-h9w8-4376-j344

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 May 2022 07:23Current

7High risk

Vulners AI Score7

CVSS210

EPSS0.00262

CWE-20

moodle validation instance id course module remote attack