NVD

Id
40119  
Name
CVE-2013-4524  
Description
Directory traversal vulnerability in repository/filesystem/lib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a path.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:C/I:N/A:N)  
Pub Date
2017-01-18  
Published
2013-11-26  
Modified Date
2013-11-27  
Seq
2013-4524  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
204178 40119 CVE-2013-4524 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-41807  View
204179 40119 CVE-2013-4524 [oss-security] 20131125 Moodle security notifications public  View
204180 40119 CVE-2013-4524 https://moodle.org/mod/forum/discuss.php?d=244481  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
23726 JVNDB-2013-005301 Moodle の repository/filesystem/lib.php におけるディレクトリトラバーサルの脆弱性 Moodle の repository/filesystem/lib.php には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2013-4524 64466 CVE-2013-4524 40119 6.8 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005301.html 2013-11-25 2013-11-28 View