CVE-2010-1613

Опубликовано: 27 мар. 2010

Источник: redhat

Описание

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=578811Moodle: Multiple security fixes in 1.8.12 upstream release

Связанные уязвимости

CVE-2010-1613

ubuntu

больше 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

nvd

больше 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

debian

больше 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate se ...

GHSA-j5rc-cr5w-vfg6

github

больше 3 лет назад

Moodle Session Fixation vulnerability