Описание
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | |
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | DNE | |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | needed | |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| esm-infra/focal | DNE |
Показывать по
10
EPSS
Процентиль: 47%
0.00243
Низкий
5 Medium
CVSS2
7.3 High
CVSS3
Связанные уязвимости
CVSS3: 7.3
nvd
больше 8 лет назад
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.
CVSS3: 7.3
debian
больше 8 лет назад
In Moodle 2.x and 3.x, web service tokens are not invalidated when the ...
CVSS3: 7.3
github
около 3 лет назад
Moodle Weak Password Recovery Mechanism for Forgotten Password
EPSS
Процентиль: 47%
0.00243
Низкий
5 Medium
CVSS2
7.3 High
CVSS3