CVE-2011-4293 in Moodleinfo

Summary

The theme implementation in Moodle 2.0.x before 2.0.4 and 2.1.x before 2.1.1 triggers duplicate caching of Cascading Style Sheets (CSS) and JavaScript content, which allows remote attackers to bypass intended access restrictions and write to an operating-system temporary directory via unspecified vectors.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

11/04/2011

Disclosure

07/16/2012

Moderation

VulDB entry created

Entries

1: VDB-61301

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

6.5

EPSS

0.00195

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4293
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4293
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4293/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!