Lucene search
Veracode Vulnerability DatabaseVERACODE:4739HistoryJul 27, 2017 - 3:07 a.m.
Information Disclosure
2017-07-2703:07:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
EPSS
0.001
Percentile
47.2%
Moodle is vulnerable to information disclosure. Authenticated attackers can get sensitive information from LTI Ajax requests because the moodle/course:manageactivities and the mod/lti:addinstance capabilities are not considered before registered-tool lists are searched.
Related
prion
prion
Code injection
2015-06-01 19:59:00
ubuntucve
ubuntucve
CVE-2015-0211
2015-06-01 00:00:00
cvelist
cvelist
CVE-2015-0211
2015-06-01 19:00:00
github
github
Moodle allows attackers to obtain sensitive information
2022-05-13 01:12:43
osv
osv
Moodle allows attackers to obtain sensitive information
2022-05-13 01:12:43
cve
cve
CVE-2015-0211
2015-06-01 19:59:00
nvd
nvd
CVE-2015-0211
2015-06-01 19:59:00
nessus
nessus
Moodle < 2.6 / 2.6.x < 2.6.7 / 2.7.x < 2.7.4 / 2.8.x < 2.8.2 Multiple Vulnerabilities
2015-04-21 00:00:00
Fedora 21 : moodle-2.7.5-1.fc21 (2015-1751)
2015-02-16 00:00:00
mageia
mageia
Updated moodle package fixes security vulnerabilities
2015-01-20 17:57:33
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0032)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2015-1751
2015-02-15 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: moodle-2.7.5-1.fc21
2015-02-15 03:24:22