Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2009-4300 - Vulnerability Database
Moodle

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2009-4300

Medium
Reference: CVE-2009-4300
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-4300
Title: Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Multiple unspecified authentication plugins in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 store the MD5 hashes for passwords in the user table even when the cached hashes are not used by the plugin which might make it easier for attackers to obtain credentials via unspecified vectors.