CVE-2011-4285 in Moodleinfo

Summary

The default configuration of Moodle 2.0.x before 2.0.2 has an incorrect setting of the moodle/course:delete capability, which allows remote authenticated users to delete arbitrary courses by leveraging the teacher role.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

11/04/2011

Disclosure

07/16/2012

Moderation

VulDB entry created

Entries

1: VDB-61293

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.4

EPSS

0.00442

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4285
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4285
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4285/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!