5 matches found
Moodle 2.8.x < 2.8.6 Multiple Vulnerabilities
Binary data 9425.prm...
Fedora 21 : moodle-2.7.9-1.fc21 (2015-14996)
moodle-2.7.9-1.fc21 - 2.7.9. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 22 : moodle-2.8.7-1.fc22 (2015-14988)
moodle-2.8.7-1.fc22 - Latest upstream release. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
CVE-2015-3177
Moodle 2.8.x before 2.8.6 does not consider the tool/monitor:subscribe capability before entering subscriptions to site-wide event-monitor rules, which allows remote authenticated users to obtain sensitive information via a subscription request...
CVE-2015-3177
The CVE-2015-3177 entry affects Moodle 2.8.x prior to 2.8.6. The vulnerability arises because Moodle does not properly enforce the tool/monitor:subscribe capability before entering subscriptions to site-wide event-monitor rules, enabling remote authenticated users to obtain sensitive information ...