Описание
mod/assign/externallib.php in Moodle 2.6.x before 2.6.2 does not properly handle assignment web-service parameters, which might allow remote authenticated users to modify grade metadata via unspecified vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:moodle:moodle:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.6.1:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00178
Низкий
4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
больше 11 лет назад
mod/assign/externallib.php in Moodle 2.6.x before 2.6.2 does not properly handle assignment web-service parameters, which might allow remote authenticated users to modify grade metadata via unspecified vectors.
debian
больше 11 лет назад
mod/assign/externallib.php in Moodle 2.6.x before 2.6.2 does not prope ...
EPSS
Процентиль: 40%
0.00178
Низкий
4 Medium
CVSS2
Дефекты
CWE-264