Lucene search
PRIOn knowledge basePRION:CVE-2014-0125HistoryMar 24, 2014 - 2:20 p.m.
Design/Logic Flaw
2014-03-2414:20:00
PRIOn knowledge base
www.prio-n.com
3
7 High
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.003 Low
EPSS
Percentile
64.5%
repository/alfresco/lib.php in Moodle through 2.3.11, 2.4.x before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 places a session key in a URL, which allows remote attackers to bypass intended Alfresco Repository file restrictions by impersonating a file’s owner.
Related
ubuntucve
ubuntucve
CVE-2014-0125
2014-03-24 00:00:00
veracode
veracode
Impersonation Attack
2017-07-14 08:57:35
cvelist
cvelist
CVE-2014-0125
2014-03-22 01:00:00
cve
cve
CVE-2014-0125
2014-03-24 14:20:00
github
github
Moodle places a session key in a URL
2022-05-13 01:12:50
osv
osv
Moodle places a session key in a URL
2022-05-13 01:12:50
nessus
nessus
Fedora 20 : moodle-2.5.5-1.fc20 (2014-4163)
2014-03-31 00:00:00
Fedora 19 : moodle-2.4.9-1.fc19 (2014-4152)
2014-03-31 00:00:00
Moodle 2.4.x < 2.4.9 Multiple Vulnerabilities
2016-07-21 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2014-4163
2014-04-03 00:00:00
Fedora Update for moodle FEDORA-2014-4163
2014-04-03 00:00:00
Mageia: Security Advisory (MGASA-2014-0160)
2022-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: moodle-2.5.5-1.fc20
2014-03-30 06:16:54
[SECURITY] Fedora 19 Update: moodle-2.4.9-1.fc19
2014-03-30 06:10:35
[SECURITY] Fedora 20 Update: moodle-2.5.6-1.fc20
2014-05-29 23:27:45
mageia
mageia
Updated moodle packages fix multiple security vulnerabilities
2014-04-03 21:23:49
7 High
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.003 Low
EPSS
Percentile
64.5%
Related for PRION:CVE-2014-0125