Описание
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| moodle | removed | package |
Примечания
https://moodle.org/mod/forum/discuss.php?d=352354
Связанные уязвимости
CVSS3: 5.3
ubuntu
больше 8 лет назад
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
CVSS3: 5.3
nvd
больше 8 лет назад
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
CVSS3: 5.3
github
больше 3 лет назад
Moodle Unauthorized searching of arbitrary blogs by typing full url