Описание
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. It was possible for the core_course_get_categories web service to return hidden categories, which should be omitted when fetching course categories.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needs-triage |
| cosmic | ignored | end of life |
| devel | DNE | |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needs-triage] |
| esm-infra/focal | DNE |
Показывать по
10
EPSS
Процентиль: 52%
0.00289
Низкий
5 Medium
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.3
nvd
почти 7 лет назад
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. It was possible for the core_course_get_categories web service to return hidden categories, which should be omitted when fetching course categories.
CVSS3: 4.3
debian
почти 7 лет назад
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13 ...
CVSS3: 5.3
github
около 3 лет назад
Moodle Exposure of Sensitive Information to an Unauthorized Actor
EPSS
Процентиль: 52%
0.00289
Низкий
5 Medium
CVSS2
4.3 Medium
CVSS3