CVE-2010-1613

Опубликовано: 29 апр. 2010

Источник: ubuntu

Приоритет: low

CVSS2: 6.8

Описание

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	not-affected	1.9.9.dfsg2-2
hardy	ignored	end of life
jaunty	ignored	end of life
karmic	ignored	end of life
lucid	ignored	end of life
maverick	ignored	end of life
natty	not-affected	1.9.9.dfsg2-2
oneiric	not-affected	1.9.9.dfsg2-2
precise	not-affected	1.9.9.dfsg2-2

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2010-1613

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2010-1613

redhat

больше 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

nvd

больше 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate session id during login" setting by default, which makes it easier for remote attackers to conduct session fixation attacks.

CVE-2010-1613

debian

больше 15 лет назад

Moodle 1.8.x and 1.9.x before 1.9.8 does not enable the "Regenerate se ...

GHSA-j5rc-cr5w-vfg6

github

около 3 лет назад

Moodle Session Fixation vulnerability

6.8 Medium

CVSS2

CVE-2010-1613

Описание

Пакет moodle

Ссылки на источники

Связанные уязвимости