3 matches found
Incorrect Authorization
Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Incorrect Authorization the category retrieval logic in objects/categories.json.php and objects/category.php. An attacker can enumerate non-private categories and...
MGASA-2016-0122 Updated moodle packages fix security vulnerability
In Moodle before 2.8.11, teachers who otherwise were not supposed to see students' emails could see them in the participants list CVE-2016-2151. In Moodle before 2.8.11, Moodle traditionally trusted content from external DB, however it was decided that external datasources may not be aware of web...
Moodle Design Vulnerability (CNVD-2016-01813)
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security vulnerability exists in version 2.8.x of Moodle prior to 2.8.11. The...