4 matches found
Debian: Security Advisory (DSA-2115-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : moodle (openSUSE-SU-2010:0212-1)
Moodle version 1.9.8 fixes several security issues including cross-site-scripting XSS and SQL injection bugs CVE-2010-1613, CVE-2010-1614, CVE-2010-1615, CVE-2010-1616, CVE-2010-1617 CVE-2010-1618, CVE-2010-1619. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...
CVE-2010-1613
Moodle 1.8.x and 1.9.x before 1.9.8 are affected. The root cause is that the Regenerate session id during login setting is not enabled by default, enabling potential session fixation by remote attackers. Debian/SUSE advisories confirm remediation by upgrading Moodle to fixed packages (e.g., Debia...
CVE-2010-1613
Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks...