Lucene search
GoogleOSV:GHSA-GR8J-QM8R-RFGGHistoryMay 13, 2022 - 1:12 a.m.
Moodle Improper Access Control
2022-05-1301:12:38
Google
osv.dev
4
moodle
improper access control
remote authenticated users
overwrite
course idnumber
The “restore teacher” feature in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to overwrite the course idnumber.
References
git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-51369
www.openwall.com/lists/oss-security/2016/05/17/4
www.securitytracker.com/id/1035902
bugzilla.redhat.com/show_bug.cgi?id=1335933
github.com/moodle/moodle/commit/12c28574868d6f6e5c57fb63298c82cb8bdd0bb6
github.com/moodle/moodle/commit/24b0c3c86ae96e46b87d6e9d6bcf4a6014dae8f0
github.com/moodle/moodle/commit/2950f9fb9128f9ae48e00b864da90be76c2bf139
github.com/moodle/moodle/commit/3c9d2b104023a8b9fdc5f4d7e136083babd2609a
nvd.nist.gov/vuln/detail/CVE-2016-3733
Related
veracode
veracode
Unauthorized Overwrites
2017-05-23 08:08:45
cvelist
cvelist
CVE-2016-3733
2017-04-20 21:00:00
cve
cve
CVE-2016-3733
2017-04-20 21:59:00
prion
prion
Design/Logic Flaw
2017-04-20 21:59:00
osv
osv
CVE-2016-3733
2017-04-20 21:59:00
github
github
Moodle Improper Access Control
2022-05-13 01:12:38
ubuntucve
ubuntucve
CVE-2016-3733
2017-04-20 00:00:00
nvd
nvd
CVE-2016-3733
2017-04-20 21:59:00
nessus
nessus
Moodle 2.7.x < 2.7.14 Multiple Vulnerabilities
2016-07-21 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2016-286bacdbfb
2016-06-08 00:00:00
Moodle 2.x / 3.x Multiple Vulnerabilities (May 2016) - Windows
2018-05-08 00:00:00
Moodle 2.x / 3.x Multiple Vulnerabilities (May 2016) - Linux
2018-05-08 00:00:00
freebsd
freebsd
moodle -- multiple vulnerabilities
2016-05-18 00:00:00