Lucene search
Veracode Vulnerability DatabaseVERACODE:4281HistoryMay 23, 2017 - 7:16 a.m.
Information Disclosure
2017-05-2307:16:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.001
Percentile
41.0%
Moodle is vulnerable to information disclosure. The attacks exist because the checking of whose badges are being viewed is not done in the correct context, allowing an authenticated user to discern the other users’ badges without their permissions.
References
www.openwall.com/lists/oss-security/2016/05/17/4
www.securitytracker.com/id/1035902
bugzilla.redhat.com/show_bug.cgi?id=1335933
git.moodle.org/gw?p=moodle.git;a=commit;h=b9cc7e01a1c4d86b866e45a7a38b0c09d13a4502
github.com/moodle/moodle/commit/b9cc7e01a1c4d86b866e45a7a38b0c09d13a4502#diff-61f83df71e9cf23e19a8dc34fdb4dc1bL37
security-tracker.debian.org/tracker/CVE-2016-3732
Related
osv
osv
CVE-2016-3732
2017-04-20 21:59:00
Moodle sensitive information disclosure
2022-05-13 01:12:38
cvelist
cvelist
CVE-2016-3732
2017-04-20 21:00:00
prion
prion
Directory traversal
2017-04-20 21:59:00
cve
cve
CVE-2016-3732
2017-04-20 21:59:00
ubuntucve
ubuntucve
CVE-2016-3732
2017-04-20 00:00:00
github
github
Moodle sensitive information disclosure
2022-05-13 01:12:38
nvd
nvd
CVE-2016-3732
2017-04-20 21:59:00
fedora
fedora
[SECURITY] Fedora 23 Update: moodle-2.9.6-1.fc23
2016-05-21 00:04:37
nessus
nessus
Moodle 2.7.x < 2.7.14 Multiple Vulnerabilities
2016-07-21 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2016-286bacdbfb
2016-06-08 00:00:00
Moodle 2.x / 3.x Multiple Vulnerabilities (May 2016) - Windows
2018-05-08 00:00:00
Moodle 2.x / 3.x Multiple Vulnerabilities (May 2016) - Linux
2018-05-08 00:00:00
freebsd
freebsd
moodle -- multiple vulnerabilities
2016-05-18 00:00:00