Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle 7PK - Security Features Vulnerability - CVE-2015-5331 - Vulnerability Database
Moodle

Moodle 7PK - Security Features Vulnerability - CVE-2015-5331

Medium
Reference: CVE-2015-5331
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-5331
Title: Moodle 7PK - Security Features Vulnerability
Overview:

Moodle 2.9.x before 2.9.3 does not properly check the contact list before authorizing message transmission which allows remote authenticated users to bypass intended access restrictions and conduct spam attacks via the messaging API.