Описание
Moodle Unauthorized searching of arbitrary blogs by typing full url
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
Пакеты
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
>= 3.2, < 3.2.3
3.2.3
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
>= 3.1, < 3.1.6
3.1.6
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
>= 3.0, < 3.0.10
3.0.10
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
>= 2.7, < 2.7.20
2.7.20
Связанные уязвимости
CVSS3: 5.3
ubuntu
больше 8 лет назад
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
CVSS3: 5.3
nvd
больше 8 лет назад
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
CVSS3: 5.3
debian
больше 8 лет назад
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible becaus ...