Lucene search
Veracode Vulnerability DatabaseVERACODE:7074HistoryJul 17, 2018 - 7:08 a.m.
Authorization Bypass
2018-07-1707:08:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
21.8%
moodle is vulnerable to authorization bypasses. A malicious user can pass a DNS Records that returns multiple A records to bypass the blocked cUrl list.
| CPE | Name | Operator | Version |
|---|---|---|---|
| moodle/moodle | le | 3.3.3 | |
| moodle/moodle | le | 3.2.6 | |
| moodle/moodle | le | 3.4.0 |
Related
github
github
cvelist
cvelist
CVE-2018-1043
2018-01-22 08:00:00
cve
cve
CVE-2018-1043
2018-01-22 08:29:00
osv
osv
CVE-2018-1043
2018-01-22 08:29:00
openvas
openvas
Moodle 3.x Bypass Vulnerability (Jan 2018) - Linux
2018-05-09 00:00:00
Moodle 3.x Bypass Vulnerability (Jan 2018) - Windows
2018-05-09 00:00:00
Fedora Update for moodle FEDORA-2018-c587c0a62d
2018-02-01 00:00:00
prion
prion
Session fixation
2018-01-22 08:29:00
nvd
nvd
CVE-2018-1043
2018-01-22 08:29:00
ubuntucve
ubuntucve
CVE-2018-1043
2018-01-22 00:00:00
nessus
nessus
Fedora 27 : moodle (2018-c587c0a62d)
2018-02-01 00:00:00
Fedora 26 : moodle (2018-7e086e3309)
2018-02-01 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: moodle-3.3.4-1.fc27
2018-01-31 21:59:13
[SECURITY] Fedora 26 Update: moodle-3.2.7-1.fc26
2018-01-31 18:06:24