Vulnerabilities

CVE-2013-2082

by Fred · 24/05/2013

Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not enforce capability requirements for reading blog comments, which allows remote attackers to obtain sensitive information via a crafted request.

Date published : 2013-05-24

http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37245

https://moodle.org/mod/forum/discuss.php?d=228934

Similar

Tags: Cybersecurity Alert