Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2011-4287

Опубликовано: 16 июл. 2012
Источник: ubuntu
Приоритет: medium
CVSS2: 6.8

Описание

admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force password changes for autosubscribed users, which makes it easier for remote attackers to obtain access by leveraging knowledge of the initial password of a new user.

РелизСтатусПримечание
devel

not-affected

1.9.9.dfsg2-4
hardy

ignored

end of life
lucid

not-affected

maverick

not-affected

natty

not-affected

oneiric

not-affected

upstream

needs-triage

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2011-4287

nvd
почти 13 лет назад

admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force password changes for autosubscribed users, which makes it easier for remote attackers to obtain access by leveraging knowledge of the initial password of a new user.

debian логотип

CVE-2011-4287

debian
почти 13 лет назад

admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force ...

github логотип

GHSA-j3x5-cwfj-pfcw

github
около 3 лет назад

Moodle does not force password changes for autosubscribed users

6.8 Medium

CVSS2