Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-4288

Опубликовано: 16 июл. 2012
Источник: nvd
CVSS2: 4
EPSS Низкий

Описание

Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly implement associations between teachers and groups, which allows remote authenticated users to read quiz reports of arbitrary students by leveraging the teacher role.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:moodle:moodle:1.9.2:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.3:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.4:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.5:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.6:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.7:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.8:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.9:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.10:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:1.9.11:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*

EPSS

Процентиль: 43%
0.00199
Низкий

4 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2011-4288

ubuntu
почти 13 лет назад

Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly implement associations between teachers and groups, which allows remote authenticated users to read quiz reports of arbitrary students by leveraging the teacher role.

debian логотип

CVE-2011-4288

debian
почти 13 лет назад

Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly im ...

github логотип

GHSA-qq3m-44fg-p6q8

github
около 3 лет назад

Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly implement associations between teachers and groups, which allows remote authenticated users to read quiz reports of arbitrary students by leveraging the teacher role.

EPSS

Процентиль: 43%
0.00199
Низкий

4 Medium

CVSS2

Дефекты

CWE-264