Lucene search
Ubuntu.comUB:CVE-2012-6099HistoryJan 27, 2013 - 12:00 a.m.
CVE-2012-6099
2013-01-2700:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
46.1%
The moodle1 backup converter in backup/converter/moodle1/lib.php in Moodle
2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x
before 2.4.1 does not properly validate pathnames, which allows remote
authenticated users to read arbitrary files by leveraging the
backup-restoration feature.
Related
veracode
veracode
Arbitrary File Read
2017-06-07 06:05:36
osv
osv
Moodle Arbitrary File Read via Backup Functionality
2022-05-13 01:12:55
cvelist
cvelist
CVE-2012-6099
2013-01-27 22:00:00
prion
prion
Design/Logic Flaw
2013-01-27 22:55:00
nvd
nvd
CVE-2012-6099
2013-01-27 22:55:03
github
github
Moodle Arbitrary File Read via Backup Functionality
2022-05-13 01:12:55
cve
cve
CVE-2012-6099
2013-01-27 22:55:03
nessus
nessus
Moodle 2.1.x < 2.1.10 Multiple Vulnerabilities
2016-07-21 00:00:00
Moodle 2.2.x < 2.2.7 Multiple Vulnerabilities
2016-07-21 00:00:00
Moodle 2.3.x < 2.3.4 Multiple Vulnerabilities
2016-07-21 00:00:00
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
46.1%
Related for UB:CVE-2012-6099