ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended restrictions on reading other participants' entries via an advanced search.
| Π Π΅Π»ΠΈΠ· | Π‘ΡΠ°ΡΡΡ | ΠΡΠΈΠΌΠ΅ΡΠ°Π½ΠΈΠ΅ |
|---|---|---|
| devel | not-affected | 2.2.6.dfsg-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [2.2.6.dfsg-1]] |
| hardy | ignored | end of life |
| lucid | not-affected | |
| oneiric | not-affected | |
| precise | not-affected | 1.9.9.dfsg2-6 |
| quantal | ignored | end of life |
| raring | not-affected | 2.2.6.dfsg-1 |
| saucy | not-affected | 2.2.6.dfsg-1 |
| trusty | not-affected | 2.2.6.dfsg-1 |
ΠΠΎΠΊΠ°Π·ΡΠ²Π°ΡΡ ΠΏΠΎ
EPSS
6.4 Medium
CVSS2
Π‘Π²ΡΠ·Π°Π½Π½ΡΠ΅ ΡΡΠ·Π²ΠΈΠΌΠΎΡΡΠΈ
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended restrictions on reading other participants' entries via an advanced search.
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x befor ...
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended restrictions on reading other participants' entries via an advanced search.
EPSS
6.4 Medium
CVSS2