Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-664q-mrxx-2x2v

Опубликовано: 13 мая 2022
Источник: github
Github: Прошло ревью

Описание

Moodle does not properly manage privileges for WebDAV repositories

Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not properly manage privileges for WebDAV repositories, which allows remote authenticated users to read, modify, or delete arbitrary site-wide repositories by leveraging certain read access.

Ссылки

Пакеты

Наименование

moodle/moodle

composer
Затронутые версииВерсия исправления

>= 2.0.0, < 2.2.8

2.2.8

Наименование

moodle/moodle

composer
Затронутые версииВерсия исправления

>= 2.3.0, < 2.3.5

2.3.5

Наименование

moodle/moodle

composer
Затронутые версииВерсия исправления

>= 2.4.0, < 2.4.2

2.4.2

EPSS

Процентиль: 70%
0.00644
Низкий

CVE ID

CVE-2013-1836

Связанные уязвимости

ubuntu логотип

CVE-2013-1836

ubuntu
около 12 лет назад

Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not properly manage privileges for WebDAV repositories, which allows remote authenticated users to read, modify, or delete arbitrary site-wide repositories by leveraging certain read access.

nvd логотип

CVE-2013-1836

nvd
около 12 лет назад

Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not properly manage privileges for WebDAV repositories, which allows remote authenticated users to read, modify, or delete arbitrary site-wide repositories by leveraging certain read access.

debian логотип

CVE-2013-1836

debian
около 12 лет назад

Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and ...

EPSS

Процентиль: 70%
0.00644
Низкий

CVE ID

CVE-2013-1836