Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2011-4287

Опубликовано: 16 июл. 2012
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8

Описание

admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force password changes for autosubscribed users, which makes it easier for remote attackers to obtain access by leveraging knowledge of the initial password of a new user.

РелизСтатусПримечание
devel

not-affected

1.9.9.dfsg2-4
hardy

ignored

end of life
lucid

not-affected

maverick

not-affected

natty

not-affected

oneiric

not-affected

upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 64%
0.00485
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2011-4287

nvd
около 13 лет назад

admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force password changes for autosubscribed users, which makes it easier for remote attackers to obtain access by leveraging knowledge of the initial password of a new user.

debian логотип

CVE-2011-4287

debian
около 13 лет назад

admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force ...

github логотип

GHSA-j3x5-cwfj-pfcw

github
больше 3 лет назад

Moodle does not force password changes for autosubscribed users

EPSS

Процентиль: 64%
0.00485
Низкий

6.8 Medium

CVSS2