Lucene search
PRIOn knowledge basePRION:CVE-2018-1081HistoryApr 04, 2018 - 9:29 p.m.
Design/Logic Flaw
2018-04-0421:29:00
PRIOn knowledge base
www.prio-n.com
1
A flaw was found in Moodle 3.4 to 3.4.1, 3.3 to 3.3.4, 3.2 to 3.2.7, 3.1 to 3.1.10 and earlier unsupported versions. Unauthenticated users can trigger custom messages to admin via paypal enrol script. Paypal IPN callback script should only send error emails to admin after request origin was verified, otherwise admin email can be spammed.
Related
cve
cve
CVE-2018-1081
2018-04-04 21:29:00
openvas
openvas
Moodle 3.x Spam Vulnerability (Mar 2018) - Linux
2018-05-08 00:00:00
Moodle 3.x Spam Vulnerability (Mar 2018) - Windows
2018-05-08 00:00:00
cvelist
cvelist
CVE-2018-1081
2018-03-26 00:00:00
github
github
ubuntucve
ubuntucve
CVE-2018-1081
2018-04-04 00:00:00
osv
osv
CVE-2018-1081
2018-04-04 21:29:00
nvd
nvd
CVE-2018-1081
2018-04-04 21:29:00
nessus
nessus
freebsd
freebsd
moodle -- multiple vulnerabilities
2018-03-14 00:00:00