Описание
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| moodle | removed | package |
Примечания
https://moodle.org/mod/forum/discuss.php?d=352354
Связанные уязвимости
CVSS3: 5.3
ubuntu
около 8 лет назад
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
CVSS3: 5.3
nvd
около 8 лет назад
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
CVSS3: 5.3
github
около 3 лет назад
Moodle Unauthorized searching of arbitrary blogs by typing full url