CVE-2010-1613

Опубликовано: 27 мар. 2010

Источник: redhat

EPSS Низкий

Описание

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2010-1613

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=578811Moodle: Multiple security fixes in 1.8.12 upstream release

EPSS

Процентиль: 63%

0.00447

Низкий

Связанные уязвимости

CVE-2010-1613

ubuntu

около 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

nvd

около 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

debian

около 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate se ...

GHSA-j5rc-cr5w-vfg6

github

около 3 лет назад

Moodle Session Fixation vulnerability

EPSS

Процентиль: 63%

0.00447

Низкий