Lucene search
GoogleOSV:GHSA-M7CC-6VHG-39WRHistoryMay 13, 2022 - 1:12 a.m.
Moodle improper access control
2022-05-1301:12:49
Google
osv.dev
5
moodle
access control
bypass
spam attacks
messaging api
EPSS
0.001
Percentile
34.9%
Moodle 2.9.x before 2.9.3 does not properly check the contact list before authorizing message transmission, which allows remote authenticated users to bypass intended access restrictions and conduct spam attacks via the messaging API.
Related
veracode
veracode
Access Restriction Bypass
2017-07-26 22:23:03
cve
cve
CVE-2015-5331
2016-02-22 05:59:11
ubuntucve
ubuntucve
CVE-2015-5331
2016-02-22 00:00:00
cvelist
cvelist
CVE-2015-5331
2016-02-22 02:00:00
nvd
nvd
CVE-2015-5331
2016-02-22 05:59:11
prion
prion
Design/Logic Flaw
2016-02-22 05:59:00
github
github
Moodle improper access control
2022-05-13 01:12:49
fedora
fedora
[SECURITY] Fedora 22 Update: moodle-2.8.9-1.fc22
2015-12-12 01:55:37
[SECURITY] Fedora 23 Update: moodle-2.9.3-1.fc23
2015-12-11 23:57:23
nessus
nessus
Fedora 23 : moodle-2.9.3-1.fc23 (2015-98fc0d20ad)
2016-03-04 00:00:00
Fedora 22 : moodle-2.8.9-1.fc22 (2015-2ebdd4ad8f)
2016-03-04 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2015-2
2015-12-12 00:00:00