Lucene search
PRIOn knowledge basePRION:CVE-2009-4298HistoryDec 16, 2009 - 1:30 a.m.
Design/Logic Flaw
2009-12-1601:30:00
PRIOn knowledge base
www.prio-n.com
2
The LAMS module (mod/lams) for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the (1) username, (2) firstname, and (3) lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors.
References
docs.moodle.org/en/Moodle_1.8.11_release_notes
docs.moodle.org/en/Moodle_1.9.7_release_notes
moodle.org/mod/forum/discuss.php?d=139102
secunia.com/advisories/37614
www.securityfocus.com/bid/37244
www.vupen.com/english/advisories/2009/3455
www.redhat.com/archives/fedora-package-announce/2009-December/msg00704.html
www.redhat.com/archives/fedora-package-announce/2009-December/msg00730.html
www.redhat.com/archives/fedora-package-announce/2009-December/msg00751.html
Related
cvelist
cvelist
CVE-2009-4298
2022-10-03 16:24:02
nvd
nvd
CVE-2009-4298
2009-12-16 01:30:00
cve
cve
CVE-2009-4298
2022-10-03 16:24:02
ubuntucve
ubuntucve
CVE-2009-4298
2009-12-16 00:00:00
debian
debian
[SECURITY] [DSA 1986-1] New moodle packages fix several vulnerabilities
2010-02-02 19:16:23
openvas
openvas
Debian Security Advisory DSA 1986-1 (moodle)
2010-02-10 00:00:00
Debian: Security Advisory (DSA-1986-1)
2010-02-10 00:00:00
Fedora Core 11 FEDORA-2009-13080 (moodle)
2009-12-14 00:00:00
securityvulns
securityvulns
nessus
nessus
Debian DSA-1986-1 : moodle - several vulnerabilities
2010-02-24 00:00:00
Fedora 12 : moodle-1.9.7-1.fc12 (2009-13065)
2009-12-14 00:00:00
Fedora 10 : moodle-1.9.7-1.fc10 (2009-13040)
2009-12-14 00:00:00
osv
osv
moodle - several vulnerabilities
2010-02-02 00:00:00