Lucene search
Veracode Vulnerability DatabaseVERACODE:4830HistoryJul 30, 2017 - 10:36 p.m.
Access Restriction Bypass
2017-07-3022:36:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
EPSS
0.001
Percentile
45.7%
Moodle is vulnerable to access restriction bypass. If an authenticated attacker is a member of more than one group, Moodle allows the user to post to all groups even if the user does not have that capability. This is because it fails to enforce the moodle/site:accessallgroups capability requirement.
Related
nvd
nvd
CVE-2014-3553
2014-07-29 11:10:32
prion
prion
Design/Logic Flaw
2014-07-29 11:10:00
github
github
ubuntucve
ubuntucve
CVE-2014-3553
2014-07-29 00:00:00
cvelist
cvelist
CVE-2014-3553
2014-07-29 10:00:00
cve
cve
CVE-2014-3553
2014-07-29 11:10:32
osv
osv
nessus
nessus
Moodle < 2.4 / 2.4.x < 2.4.11 / 2.5.x < 2.5.7 / 2.6.x < 2.6.4 / 2.7.x < 2.7.1 Multiple Vulnerabilities
2015-04-20 00:00:00
Fedora 20 : moodle-2.5.7-1.fc20 (2014-8601)
2014-07-31 00:00:00
Fedora 19 : moodle-2.4.11-1.fc19 (2014-8609)
2014-07-31 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0308)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2014-15102
2014-11-26 00:00:00
Fedora Update for moodle FEDORA-2014-10802
2014-10-01 00:00:00
mageia
mageia
Updated moodle package fixes security vulnerabilities
2014-08-06 00:08:48
fedora
fedora
[SECURITY] Fedora 20 Update: moodle-2.5.9-1.fc20
2014-11-25 15:30:01
[SECURITY] Fedora 20 Update: moodle-2.5.7-1.fc20
2014-07-30 07:03:13
[SECURITY] Fedora 20 Update: moodle-2.5.8-1.fc20
2014-09-25 10:46:26