Описание
Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.
Дополнительная информация
Статус:
Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=578811Moodle: Multiple security fixes in 1.8.12 upstream release
Связанные уязвимости
ubuntu
почти 16 лет назад
Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.
nvd
почти 16 лет назад
Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.
debian
почти 16 лет назад
Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate se ...
