Information Disclosure

2017-06-0705:45:39

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

EPSS

0.001

Percentile

49.8%

JSON

Moodle is vulnerable to information disclosure. Authenticated users can bypass the moodle/role:manage capability and read all capability data through visiting the Check Permissions page.

References

git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-35381

openwall.com/lists/oss-security/2012/11/19/1

www.securityfocus.com/bid/56505

moodle.org/mod/forum/discuss.php?d=216161

EPSS

0.001

Percentile

49.8%

JSON

Related for VERACODE:4388