GHSA-PRRH-679X-79QH Moodle allows remote authenticated users to reassign notes

notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes via a modified 1 userid or 2 courseid field...

PrinterLogic Web Stack 安全漏洞

PrinterLogic Web Stack PrinterLogic Printer Installer is a native Web application from PrinterLogic, Inc. It enables the It department to manage and automate the creation/dissemination of printer Objects and printer drivers across print environments from a single management console. PrinterLogic...

WordPress 插件跨站请求伪造漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A security vulnerability exists in the WordPress...

The vulnerability of Intel Graphics Driver drivers lies in the lack of checking for the value of the pointer before its assignment, which allows a malicious actor to trigger a service failure.

The vulnerability of Intel Graphics Driver drivers is related to the lack of checking for the value of the pointer before it is reassigned. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the software package for creating the CX-Position position control system, the software package for describing procedures for serial data exchange between standard CX-Protocol devices, and the device compatibility system between Omron CX-Servers included in the Omron CX-One software suite, allows a hacker to execute arbitrary code.

The vulnerabilities of the software package for creating the CX-Position position control system, the software package for describing procedures for serial data exchange between standard CX-Protocol devices, and the device compatibility system between Omron CX-Servers included in the Omron CX-One...

The vulnerability of microprogrammed software in Schneider Electric Modicon M221 programmable logic controllers is caused by deficiencies in the authentication process, allowing attackers to re-enter passwords.

The vulnerability of the microprogrammed software in Schneider Electric Modicon M221 programmable logic controllers is due to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to remotely reassign passwords...

Authentication flaw

The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change...

CVE-2016-4383

The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change...

DEBIAN-CVE-2016-4383

The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change...

CVE-2016-4383

The glance-manage db in all versions of HPE Helion Openstack Glance allows deleted image ids to be reassigned, which allows remote authenticated users to cause other users to boot into a modified image without notification of the change...

Design/Logic Flaw

WordPress before 3.5.2 does not properly check the capabilities of roles, which allows remote authenticated users to bypass intended restrictions on publishing and authorship reassignment via unspecified vectors...

CVE-2013-1834

notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes via a modified 1 userid or 2 courseid field...

Code injection

notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes via a modified 1 userid or 2 courseid field...

CVE-2013-1834

notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes via a modified 1 userid or 2 courseid field...

CVE-2013-1834

CVE-2013-1834 affects Moodle: notes/edit.php in Moodle 1.9.x–1.9.19, 2.x–2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes by modifying (userid) or (courseid) fields. The vulnerability arises from improper input handling in ...

UBUNTU-CVE-2013-1834

notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes via a modified 1 userid or 2 courseid field...

Allow issue security level to use any custom field that implements UserCFNotificationTypeAware

panel:bgColor=e7f4fa NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion|http://jira.atlassian.com/browse/JRASERVER-18099. panel It would be useful to be able to set the security level on an issue to include everyone who participated on an issue so if you...