exploitDog

CVE-2010-1617

Опубликовано: 29 апр. 2010

Источник: ubuntu

Приоритет: low

CVSS2: 4

Описание

user/view.php in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 does not properly check a role, which allows remote authenticated users to obtain the full names of other users via the course profile page.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	not-affected	1.9.9.dfsg2-2
hardy	ignored	end of life
jaunty	ignored	end of life
karmic	ignored	end of life
lucid	ignored	end of life
maverick	ignored	end of life
natty	not-affected	1.9.9.dfsg2-2
oneiric	not-affected	1.9.9.dfsg2-2
precise	not-affected	1.9.9.dfsg2-2

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2010-1617

4 Medium

CVSS2

Связанные уязвимости

CVE-2010-1617

redhat

около 15 лет назад

user/view.php in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 does not properly check a role, which allows remote authenticated users to obtain the full names of other users via the course profile page.

CVE-2010-1617

nvd

около 15 лет назад

user/view.php in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 does not properly check a role, which allows remote authenticated users to obtain the full names of other users via the course profile page.

CVE-2010-1617

debian

около 15 лет назад

user/view.php in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 doe ...

GHSA-q53j-c866-h9mw

github

около 3 лет назад

Moodle doesn't properly check role

4 Medium

CVSS2