Lucene search
HistoryJan 27, 2013 - 10:55 p.m.
CVE-2012-6102
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.003
Percentile
69.2%
lib.php in the Submission comments plugin in the Assignment module in Moodle 2.3.x before 2.3.4 and 2.4.x before 2.4.1 allows remote attackers to read or modify the submission comments (aka feedback comments) of arbitrary users via a crafted URI.
Affected configurations
Node
moodlemoodleMatch2.3.0
ORmoodlemoodleMatch2.3.1
ORmoodlemoodleMatch2.3.2
ORmoodlemoodleMatch2.3.3
Node
moodlemoodleMatch2.4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| moodle | moodle | 2.3.0 | cpe:2.3:a:moodle:moodle:2.3.0:*:*:*:*:*:*:* |
| moodle | moodle | 2.3.1 | cpe:2.3:a:moodle:moodle:2.3.1:*:*:*:*:*:*:* |
| moodle | moodle | 2.3.2 | cpe:2.3:a:moodle:moodle:2.3.2:*:*:*:*:*:*:* |
| moodle | moodle | 2.3.3 | cpe:2.3:a:moodle:moodle:2.3.3:*:*:*:*:*:*:* |
| moodle | moodle | 2.4.0 | cpe:2.3:a:moodle:moodle:2.4.0:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2012-6102
2013-01-27 00:00:00
veracode
veracode
Information Disclosure
2017-06-07 07:03:05
cve
cve
CVE-2012-6102
2013-01-27 22:55:03
prion
prion
Code injection
2013-01-27 22:55:00
cvelist
cvelist
CVE-2012-6102
2013-01-27 22:00:00
nessus
nessus
Moodle 2.3.x < 2.3.4 Multiple Vulnerabilities
2016-07-21 00:00:00
Moodle 2.4.x < 2.4.1 Multiple Vulnerabilities
2016-07-21 00:00:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.003
Percentile
69.2%
Related for NVD:CVE-2012-6102