EPSS
Percentile
36.5%
moodle/moodle uses an insecure session management. The session tokens are not invalidated or removed upon a successful password change.
www.securityfocus.com/bid/93174
moodle.org/mod/forum/discuss.php?d=339631