Lucene search
PRIOn knowledge basePRION:CVE-2014-0123HistoryMar 24, 2014 - 2:20 p.m.
Code injection
2014-03-2414:20:00
PRIOn knowledge base
www.prio-n.com
5
The wiki subsystem in Moodle through 2.3.11, 2.4.x before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 does not properly restrict (1) view and (2) edit access, which allows remote authenticated users to perform wiki operations by leveraging the student role and using the Recent Activity block to reach the individual wiki of an arbitrary student.
Related
cve
cve
CVE-2014-0123
2014-03-24 14:20:39
veracode
veracode
Authorization Bypass
2017-07-04 08:41:05
github
github
Moodle does not properly restrict access
2022-05-13 01:12:50
cvelist
cvelist
CVE-2014-0123
2014-03-22 01:00:00
ubuntucve
ubuntucve
CVE-2014-0123
2014-03-24 00:00:00
nvd
nvd
CVE-2014-0123
2014-03-24 14:20:39
osv
osv
Moodle does not properly restrict access
2022-05-13 01:12:50
nessus
nessus
Fedora 20 : moodle-2.5.5-1.fc20 (2014-4163)
2014-03-31 00:00:00
Fedora 19 : moodle-2.4.9-1.fc19 (2014-4152)
2014-03-31 00:00:00
Moodle 2.4.x < 2.4.9 Multiple Vulnerabilities
2016-07-21 00:00:00
openvas
openvas
Fedora Update for moodle FEDORA-2014-4163
2014-04-03 00:00:00
Mageia: Security Advisory (MGASA-2014-0160)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2014-4163
2014-04-03 00:00:00
mageia
mageia
Updated moodle packages fix multiple security vulnerabilities
2014-04-03 21:23:49
fedora
fedora
[SECURITY] Fedora 20 Update: moodle-2.5.5-1.fc20
2014-03-30 06:16:54
[SECURITY] Fedora 19 Update: moodle-2.4.9-1.fc19
2014-03-30 06:10:35
[SECURITY] Fedora 20 Update: moodle-2.5.6-1.fc20
2014-05-29 23:27:45