Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Improper Authentication Vulnerability - CVE-2013-2245 - Vulnerability Database
Moodle

Moodle Improper Authentication Vulnerability - CVE-2013-2245

Medium
Reference: CVE-2013-2245
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-2245
Title: Moodle Improper Authentication Vulnerability
Overview:

rss/file.php in Moodle through 2.1.10 2.2.x before 2.2.11 2.3.x before 2.3.8 2.4.x before 2.4.5 and 2.5.x before 2.5.1 does not properly implement the use of RSS tokens for impersonation which allows remote authenticated users to obtain sensitive block information by reading an RSS feed.