Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2013-0162
HistoryJun 06, 2013 - 4:24 p.m.

Updated moodle package fix security vulnerabilities

2013-06-0616:24:33
Gentoo Foundation
advisories.mageia.org
18

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

EPSS

0.007

Percentile

80.2%

JSON

The assignment module in Moodle before 2.4.4 was not checking capabilities for users downloading all assignments as a zip (CVE-2013-2079). The Gradebook’s Overview report in Moodle before 2.4.4 was showing grade totals that may have incorrectly included hidden grades (CVE-2013-2080). When registering a site on a hub (not Moodle.net) site in Moodle before 2.4.4, information was being sent to the hub regardless of settings chosen (CVE-2013-2081). There was no check of permissions for viewing comments on blog posts in Moodle before 2.4.4 (CVE-2013-2082). Form elements named using a specific naming scheme were not being filtered correctly in Moodle before 2.4.4 (CVE-2013-2083).

OSVersionArchitecturePackageVersionFilename
Mageia3noarchmoodle< 2.4.4-1.1moodle-2.4.4-1.1.mga3

Related

openvas 5
nessus 3
fedora 3
ubuntucve 5
veracode 5
cvelist 5
nvd 5
cve 5
github 4
osv 4
prion 5
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0162)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2013-8702
2013-05-31 00:00:00
Fedora Update for moodle FEDORA-2013-8692
2013-05-31 00:00:00
nessus
nessus
Fedora 18 : moodle-2.3.7-1.fc18 (2013-8702)
2013-05-29 00:00:00
Fedora 17 : moodle-2.2.10-1.fc17 (2013-8692)
2013-05-29 00:00:00
Fedora 19 : moodle-2.4.4-1.fc19 (2013-8668)
2013-05-29 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: moodle-2.4.4-1.fc19
2013-05-29 03:03:38
[SECURITY] Fedora 17 Update: moodle-2.2.10-1.fc17
2013-05-29 01:02:13
[SECURITY] Fedora 18 Update: moodle-2.3.7-1.fc18
2013-05-29 00:59:53
ubuntucve
ubuntucve
CVE-2013-2082
2013-05-25 00:00:00
CVE-2013-2083
2013-05-25 00:00:00
CVE-2013-2080
2013-05-25 00:00:00
veracode
veracode
Information Disclosure
2017-07-03 18:25:34
Information Disclosure
2017-06-23 05:34:43
Sanitization Bypass
2017-07-06 09:49:50
cvelist
cvelist
CVE-2013-2082
2013-05-25 01:00:00
CVE-2013-2081
2013-05-25 01:00:00
CVE-2013-2080
2013-05-25 01:00:00
nvd
nvd
CVE-2013-2082
2013-05-25 03:18:15
CVE-2013-2083
2013-05-25 03:18:15
CVE-2013-2080
2013-05-25 03:18:15
cve
cve
CVE-2013-2082
2013-05-25 03:18:15
CVE-2013-2083
2013-05-25 03:18:15
CVE-2013-2079
2013-05-25 03:18:13
github
github
Moodle does not enforce capability requirements for reading blog comments
2022-05-13 01:12:59
Moodle is vulnerable to Improper Input Validation in MoodleQuickForm class
2022-05-13 01:12:59
Moodle does not consider "don't send" attributes during hub registration
2022-05-13 01:12:59
osv
osv
Moodle is vulnerable to Sensitive Information Disclosure
2022-05-13 01:12:58
Moodle is vulnerable to Improper Input Validation in MoodleQuickForm class
2022-05-13 01:12:59
Moodle does not enforce capability requirements for reading blog comments
2022-05-13 01:12:59
prion
prion
Cross site request forgery (csrf)
2013-05-25 03:18:00
Cross site request forgery (csrf)
2013-05-25 03:18:00
Code injection
2013-05-25 03:18:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

EPSS

0.007

Percentile

80.2%

JSON
Related for MGASA-2013-0162
openvas5nessus3fedora3ubuntucve5veracode5cvelist5nvd5cve5github4osv4prion5