Lucene search
PRIOn knowledge basePRION:CVE-2010-1613HistoryApr 29, 2010 - 9:30 p.m.
Session fixation
2010-04-2921:30:00
PRIOn knowledge base
www.prio-n.com
2
7 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
80.6%
Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the “Regenerate session id during login” setting by default, which makes it easier for remote attackers to conduct session fixation attacks.
Related
cve
cve
CVE-2010-1613
2010-04-29 21:30:00
cvelist
cvelist
CVE-2010-1613
2010-04-29 21:00:00
ubuntucve
ubuntucve
CVE-2010-1613
2010-04-29 00:00:00
openvas
openvas
Moodle Session Fixation Vulnerability
2010-05-19 00:00:00
Moodle Session Fixation Vulnerability
2010-05-19 00:00:00
Moodle 1.8.x < 1.8.12, 1.9.x < 1.9.8 Multiple Vulnerabilities
2010-04-12 00:00:00
nessus
nessus
openSUSE Security Update : moodle (openSUSE-SU-2010:0212-1)
2010-05-05 00:00:00
openSUSE Security Update : moodle (openSUSE-SU-2010:0212-1)
2010-05-05 00:00:00
Debian DSA-2115-1 : moodle - several vulnerabilities
2010-10-06 00:00:00
osv
osv
moodle - several vulnerabilities
2010-09-29 00:00:00
debian
debian
[SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
2010-10-11 05:18:06
[SECURITY] [DSA-2115-1] New moodle packages fix several vulnerabilities
2010-09-29 21:04:56
7 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
80.6%
Related for PRION:CVE-2010-1613