7.6 High
AI Score
Confidence
High
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
65.6%
Moodle CMS is prone to Multiple Vulnerabilities.
# SPDX-FileCopyrightText: 2009 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.800240");
script_version("2023-07-27T05:05:08+0000");
script_tag(name:"last_modification", value:"2023-07-27 05:05:08 +0000 (Thu, 27 Jul 2023)");
script_tag(name:"creation_date", value:"2009-03-03 06:56:37 +0100 (Tue, 03 Mar 2009)");
script_tag(name:"cvss_base", value:"6.4");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:P/A:P");
script_cve_id("CVE-2009-0499", "CVE-2009-0500", "CVE-2009-0501", "CVE-2009-0502");
script_name("Moodle CMS Multiple Vulnerabilities");
script_xref(name:"URL", value:"http://moodle.org/security");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/32402");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/33612");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/33615");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/33617");
script_xref(name:"URL", value:"http://www.openwall.com/lists/oss-security/2009/02/04/1");
script_tag(name:"qod_type", value:"remote_banner_unreliable");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2009 Greenbone AG");
script_family("Web application abuses");
script_dependencies("gb_moodle_cms_detect.nasl");
script_require_ports("Services/www", 80);
script_mandatory_keys("Moodle/Version");
script_tag(name:"affected", value:"Moodle version from 1.6 prior to 1.6.9,
Moodle version from 1.7 prior to 1.7.7,
Moodle version from 1.8 prior to 1.8.8 and
Moodle version from 1.9 prior to 1.9.4 on all platforms.");
script_tag(name:"insight", value:"Multiple flaws are due to
- Vulnerability in post.php for IMG tag which allows unauthorised access
to user's posts.
- XSS Vulnerability in course/lib.php which allows injection of arbitrary
web scripts or malicious HTML codes while displaying the log report in
browser due to lack of sanitization.
- Unspecified vulnerability in the Calendar export feature which causes
conducting brute force attacks.
- XSS Vulnerability in blocks/html/block_html.php which allows injection
of arbitracy scripts of malformed HTML codes injection.");
script_tag(name:"solution", value:"Upgrade to latest version 1.6.9, 1.7.7, 1.8.8 and 1.9.4.");
script_tag(name:"summary", value:"Moodle CMS is prone to Multiple Vulnerabilities.");
script_tag(name:"impact", value:"Successful exploitation will allow remote attackers to cause Cross Site
Scripting attacks, can gain sensitive information about the user or the
remote host or can delete unauthorised posts through injecting malicious
web scripts.");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("http_func.inc");
include("port_service_func.inc");
include("version_func.inc");
moodlePort = http_get_port(default:80);
if(!get_kb_item(string("www/", moodlePort, "/moodle")))
exit(0);
moodleVer = get_kb_item("Moodle/Version");
if(!moodleVer)
exit(0);
if(version_in_range(version:moodleVer, test_version:"1.6", test_version2:"1.6.8") ||
version_in_range(version:moodleVer, test_version:"1.7", test_version2:"1.7.6") ||
version_in_range(version:moodleVer, test_version:"1.8", test_version2:"1.8.7") ||
version_in_range(version:moodleVer, test_version:"1.9", test_version2:"1.9.3")){
security_message(moodlePort);
}