Lucene search
Ubuntu.comUB:CVE-2015-2266HistoryJun 01, 2015 - 12:00 a.m.
CVE-2015-2266
2015-06-0100:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
47.2%
message/index.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before
2.7.6, and 2.8.x before 2.8.4 does not consider the
moodle/site:readallmessages capability before accessing arbitrary
conversations, which allows remote authenticated users to obtain sensitive
personal-contact and unread-message-count information via a modified URL.
Related
cvelist
cvelist
CVE-2015-2266
2015-06-01 19:00:00
prion
prion
Code injection
2015-06-01 19:59:00
cve
cve
CVE-2015-2266
2015-06-01 19:59:09
osv
osv
nvd
nvd
CVE-2015-2266
2015-06-01 19:59:09
github
github
veracode
veracode
Information Disclosure
2017-07-27 02:26:40
nessus
nessus
Moodle < 2.6 / 2.6.x < 2.6.9 / 2.7.x < 2.7.6 / 2.8.x < 2.8.4 Multiple Vulnerabilities
2015-04-21 00:00:00
Fedora 21 : moodle-2.7.7-1.fc21 (2015-4724)
2015-04-07 00:00:00
Fedora 20 : moodle-2.6.10-1.fc20 (2015-4530)
2015-04-07 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0110)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2015-4613
2015-07-07 00:00:00
Fedora Update for moodle FEDORA-2015-4724
2015-04-06 00:00:00
mageia
mageia
Updated moodle packages fix security vulnerabilities
2015-03-19 02:01:47
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
47.2%
Related for UB:CVE-2015-2266