CVE

Id
41734  
CVE No.
CVE-2009-4299  
Status
Candidate  
Description
mod/glossary/showentry.php in the Glossary module for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not properly perform access control, which allows attackers to read unauthorized Glossary entries via unknown vectors.  
Phase
Assigned (20091211)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
457961 41734 CVE-2009-4299 CONFIRM:http://docs.moodle.org/en/Moodle_1.8.11_release_notes  View
457962 41734 CVE-2009-4299 CONFIRM:http://docs.moodle.org/en/Moodle_1.9.7_release_notes  View
457963 41734 CVE-2009-4299 CONFIRM:http://moodle.org/mod/forum/discuss.php?d=139103  View
457964 41734 CVE-2009-4299 FEDORA:FEDORA-2009-13040  View
457965 41734 CVE-2009-4299 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00704.html  View
457966 41734 CVE-2009-4299 FEDORA:FEDORA-2009-13065  View
457967 41734 CVE-2009-4299 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00730.html  View
457968 41734 CVE-2009-4299 FEDORA:FEDORA-2009-13080  View
457969 41734 CVE-2009-4299 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00751.html  View
457970 41734 CVE-2009-4299 BID:37244  View
457971 41734 CVE-2009-4299 URL:http://www.securityfocus.com/bid/37244  View
457972 41734 CVE-2009-4299 SECUNIA:37614  View
457973 41734 CVE-2009-4299 URL:http://secunia.com/advisories/37614  View
457974 41734 CVE-2009-4299 VUPEN:ADV-2009-3455  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
44194 JVNDB-2009-005201 Moodle における重要な情報を取得される脆弱性 Moodle は、(1) password ハッシュおよび (2) "秘密情報" をバックアップファイルに格納するため、重要な情報を取得される脆弱性が存在します。 CVE-2009-4303 41734 5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005201.html  View