Lucene search
Veracode Vulnerability DatabaseVERACODE:4516HistoryJul 03, 2017 - 6:52 p.m.
Information Disclosure
2017-07-0318:52:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
Moodle is vulnerable to information disclosure. Authenticated users can obtain sensitive information through a request for all course feedback within a specific time frame. This can happen because mod/feedback/lib.php doesn’t check the mod/feedback:view before displaying recent feedback.
| CPE | Name | Operator | Version |
|---|---|---|---|
| moodle/moodle | le | 2.2.10 | |
| moodle/moodle | le | 2.4.4 | |
| moodle/moodle | le | 2.3.7 | |
| moodle/moodle | le | 2.1.10 | |
| moodle/moodle | le | 2.5.0 |
Related
ubuntucve
ubuntucve
CVE-2013-2246
2013-07-29 00:00:00
prion
prion
Design/Logic Flaw
2013-07-29 13:59:00
cve
cve
CVE-2013-2246
2013-07-29 13:59:00
nessus
nessus
Moodle 2.2.x < 2.2.11 Multiple Vulnerabilities
2016-07-21 00:00:00
Moodle 2.3.x < 2.3.8 Multiple Vulnerabilities
2016-07-21 00:00:00
Fedora 17 : moodle-2.2.11-1.fc17 (2013-13252)
2013-07-31 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2013-12964
2013-08-20 00:00:00
Mageia: Security Advisory (MGASA-2013-0217)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2013-12964
2013-08-20 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: moodle-2.4.5-2.fc19
2013-07-23 01:09:09
[SECURITY] Fedora 17 Update: moodle-2.2.11-1.fc17
2013-07-30 17:43:47
[SECURITY] Fedora 18 Update: moodle-2.3.8-2.fc18
2013-07-23 01:08:00
mageia
mageia
Updated moodle package fixes multiple security vulnerabilities
2013-07-21 12:38:57
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
Related for VERACODE:4516