Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Improper Access Control Vulnerability - CVE-2015-2267 - Vulnerability Database
Moodle

Moodle Improper Access Control Vulnerability - CVE-2015-2267

Medium
Reference: CVE-2015-2267
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-2267
Title: Moodle Improper Access Control Vulnerability
Overview:

mdeploy.php in Moodle through 2.5.9 2.6.x before 2.6.9 2.7.x before 2.7.6 and 2.8.x before 2.8.4 allows remote authenticated users to bypass intended access restrictions and extract archives to arbitrary directories via a crafted dataroot value.