Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2014-0129

Опубликовано: 24 мар. 2014
Источник: debian
EPSS Низкий

Описание

badges/mybadges.php in Moodle 2.5.x before 2.5.5 and 2.6.x before 2.6.2 does not properly track the user to whom a badge was issued, which allows remote authenticated users to modify the visibility of an arbitrary badge via unspecified vectors.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
moodlefixed2.6.2-1package
moodlenot-affectedsqueezepackage

Примечания

  • http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-44140

EPSS

Процентиль: 42%
0.00193
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2014-0129

ubuntu
больше 11 лет назад

badges/mybadges.php in Moodle 2.5.x before 2.5.5 and 2.6.x before 2.6.2 does not properly track the user to whom a badge was issued, which allows remote authenticated users to modify the visibility of an arbitrary badge via unspecified vectors.

nvd логотип

CVE-2014-0129

nvd
больше 11 лет назад

badges/mybadges.php in Moodle 2.5.x before 2.5.5 and 2.6.x before 2.6.2 does not properly track the user to whom a badge was issued, which allows remote authenticated users to modify the visibility of an arbitrary badge via unspecified vectors.

github логотип

GHSA-5rr5-fxhc-jv64

github
около 3 лет назад

Moodle allows attackers to modify the visibility of a badge

EPSS

Процентиль: 42%
0.00193
Низкий