Описание
Moodle Oauth 2 Insufficiently Protects Against Compromise
A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.
Пакеты
moodle/moodle
>= 3.7.0, < 3.7.3
3.7.3
moodle/moodle
>= 3.6.0, < 3.6.7
3.6.7
moodle/moodle
>= 3.5.0, < 3.5.9
3.5.9
Связанные уязвимости
A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.
A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.
A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 bef ...