CVE-2011-4288 in Moodleinfo

Summary

Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly implement associations between teachers and groups, which allows remote authenticated users to read quiz reports of arbitrary students by leveraging the teacher role.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

11/04/2011

Disclosure

07/16/2012

Moderation

VulDB entry created

Entries

VDB-61296 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

4.3

EPSS

0.00199

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4288
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4288
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4288/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!