5
CVE-2011-4300
- EPSS 2.12%
- Veröffentlicht 11.07.2012 10:26:10
- Zuletzt bearbeitet 16.06.2026 23:34:43
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
The file_browser component in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not properly restrict access to category and course data, which allows remote attackers to obtain potentially sensitive information via a request for a file.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.12% | 0.794 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
https://bugzilla.redhat.com/show_bug.cgi?id=747444
http://git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=f6b07c4da54a9db24723beb147e8a19a3d487e00
http://moodle.org/mod/forum/discuss.php?d=188311