Lucene search
GoogleOSV:BIT-MOODLE-2021-20282HistoryMar 06, 2024 - 11:10 a.m.
BIT-moodle-2021-20282
2024-03-0611:10:49
Google
osv.dev
3
user account verification
moodle
vulnerability
software
When creating a user account, it was possible to verify the account without having access to the verification email link/secret in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.
References
bugzilla.redhat.com/show_bug.cgi?id=1939046
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFSNJ7XHVTC52RSRX2GBQFF3VEEAY2MS/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UFH5DDMU5TZ3JT4Q52WMRAHACA5MHIMT/
moodle.org/mod/forum/discuss.php?d=419653
Related
prion
prion
Code injection
2021-03-15 22:15:00
cve
cve
CVE-2021-20282
2021-03-15 22:15:00
github
github
Moodle Bypass email verification secret when confirming account registration
2022-05-24 17:44:37
veracode
veracode
Authorization Bypass
2021-03-17 05:07:16
ubuntucve
ubuntucve
CVE-2021-20282
2021-03-15 00:00:00
osv
osv
Moodle Bypass email verification secret when confirming account registration
2022-05-24 17:44:37
CVE-2021-20282
2021-03-15 22:15:13
cvelist
cvelist
CVE-2021-20282
2021-03-15 21:35:56
fedora
fedora
[SECURITY] Fedora 32 Update: moodle-3.8.8-1.fc32
2021-03-23 01:12:58
[SECURITY] Fedora 33 Update: moodle-3.9.5-1.fc33
2021-03-23 01:34:46
[SECURITY] Fedora 34 Update: moodle-3.10.2-1.fc34
2021-03-19 20:34:49
openvas
openvas
Fedora: Security Advisory for moodle (FEDORA-2021-431b232659)
2021-03-24 00:00:00
Fedora: Security Advisory for moodle (FEDORA-2021-50f63a0161)
2021-03-24 00:00:00
Fedora: Security Advisory for moodle (FEDORA-2021-1c27e89d49)
2021-03-20 00:00:00
nessus
nessus
Fedora 32 : moodle (2021-50f63a0161)
2021-03-23 00:00:00
Fedora 33 : moodle (2021-431b232659)
2021-03-23 00:00:00
Moodle 3.8.x < 3.8.8 Multiple Vulnerabilities
2023-02-20 00:00:00
6.5 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
52.0%
Related for OSV:BIT-MOODLE-2021-20282