CVE-2016-7038 in Moodleinfo

Summary

In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Reservation

Disclosure

Moderation

VulDB entry created

Entries

CPE

CWE

CWE-640 (Confirmed)

CVSS

EPSS

Activities

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-7038
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-7038
CVE Details	https://www.cvedetails.com/cve/CVE-2016-7038/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!