Lucene search
Veracode Vulnerability DatabaseVERACODE:4535HistoryJul 05, 2017 - 1:36 p.m.
Information Disclosure
2017-07-0513:36:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.002
Percentile
54.7%
Moodle is vulnerable to information disclosure. A malicious administrator user can use the login_as function to view the sensitive information of the user they are logged in as.
References
git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-36426
lists.fedoraproject.org/pipermail/package-announce/2013-April/101310.html
lists.fedoraproject.org/pipermail/package-announce/2013-April/101358.html
openwall.com/lists/oss-security/2013/03/25/2
git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-36426
moodle.org/mod/forum/discuss.php?d=225347
Related
prion
prion
Information disclosure
2013-03-25 21:55:00
cve
cve
CVE-2013-1835
2013-03-25 21:55:04
cvelist
cvelist
CVE-2013-1835
2013-03-25 21:00:00
ubuntucve
ubuntucve
CVE-2013-1835
2013-03-11 00:00:00
github
github
Moodle's login_as feature leaks information from external repositories
2022-05-13 01:12:59
osv
osv
Moodle's login_as feature leaks information from external repositories
2022-05-13 01:12:59
nvd
nvd
CVE-2013-1835
2013-03-25 21:55:04
nessus
nessus
Fedora 18 : moodle-2.3.6-1.fc18 (2013-4387)
2013-04-03 00:00:00
Fedora 17 : moodle-2.2.9-1.fc17 (2013-4404)
2013-04-03 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2013-4387
2013-04-05 00:00:00
Fedora Update for moodle FEDORA-2013-4404
2013-04-05 00:00:00
Fedora Update for moodle FEDORA-2013-4387
2013-04-05 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: moodle-2.2.9-1.fc17
2013-04-03 04:26:27
[SECURITY] Fedora 18 Update: moodle-2.3.6-1.fc18
2013-04-03 04:44:25