7 matches found
Moodle 3.10.x < 3.10.7 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...
Moodle 3.9.x < 3.9.10 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...
Moodle 3.11.x < 3.11.3 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.10, 3.10.x prior to 3.10.7 or 3.11.x prior to 3.11.3. It is, therefore, affected by multiple vulnerabilities: - A session hijack vulnerability was identified in the Shibboleth authentication plugin, when enabled...
CVE-2021-40691
A session hijack risk was identified in the Shibboleth authentication plugin...
CVE-2021-40691
A session hijack risk was identified in the Shibboleth authentication plugin...
CVE-2021-40691
A session hijack risk was identified in the Shibboleth authentication plugin...
CVE-2021-40691
CVE-2021-40691 is a session-hijack risk identified in the Shibboleth authentication plugin, reported in the Moodle ecosystem. The base CVSSv3.1 score from NVD is 4.3 (Medium) with Network attack vector, low attack complexity, no privileges required, but user interaction is required and impact is ...