CVE-2011-4303 in Moodleinfo

Summary

lib/db/upgrade.php in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not set the correct registration_hubs.secret value during installation, which allows remote attackers to bypass intended access restrictions by leveraging the hubs feature.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

11/04/2011

Disclosure

07/11/2012

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-310 (Confirmed)

CVSS

5.3

EPSS

0.00178

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4303
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4303
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4303/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!