CVE-2010-1613

Опубликовано: 29 апр. 2010

Источник: debian

EPSS Низкий

Описание

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
moodle	fixed	1.9.8-1		package

EPSS

Процентиль: 63%

0.00447

Низкий

Связанные уязвимости

CVE-2010-1613

ubuntu

около 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

redhat

около 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

nvd

около 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

GHSA-j5rc-cr5w-vfg6

github

около 3 лет назад

Moodle Session Fixation vulnerability

EPSS

Процентиль: 63%

0.00447

Низкий