Lucene search
GoogleOSV:GHSA-RV62-6F56-J83WHistoryMay 24, 2022 - 5:12 p.m.
Moodle Oauth 2 Insufficiently Protects Against Compromise
2022-05-2417:12:57
Google
osv.dev
10
moodle
oauth 2
vulnerability
email verification
account compromise
software
EPSS
0.002
Percentile
54.7%
A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users’ email address changes require additional verification during sign-up to reduce the risk of account compromise.
Related
prion
prion
Design/Logic Flaw
2020-03-31 16:15:00
osv
osv
CVE-2019-14880
2020-03-31 16:15:13
github
github
Moodle Oauth 2 Insufficiently Protects Against Compromise
2022-05-24 17:12:57
symantec
symantec
Moodle CVE-2019-14880 Security Bypass Vulnerability
2019-11-18 00:00:00
veracode
veracode
Authentication Bypass
2020-01-08 01:42:47
nvd
nvd
CVE-2019-14880
2020-03-31 16:15:13
ubuntucve
ubuntucve
CVE-2019-14880
2020-03-31 00:00:00
cve
cve
CVE-2019-14880
2020-03-31 16:15:13
cvelist
cvelist
CVE-2019-14880
2020-03-31 15:11:30
openvas
openvas
Moodle < 3.5.9, 3.6.x < 3.6.7, 3.7.x < 3.7.3 Multiple Vulnerabilities
2019-11-20 00:00:00