Moodle Permissions Privileges and Access Controls Vulnerability - CVE-2011-4287 - Vulnerability Database

Moodle Permissions Privileges and Access Controls Vulnerability - CVE-2011-4287

Medium

Reference: CVE-2011-4287

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-4287

Title: Moodle Permissions Privileges and Access Controls Vulnerability

Overview:

admin/uploaduser_form.php in Moodle 2.0.x before 2.0.3 does not force password changes for autosubscribed users which makes it easier for remote attackers to obtain access by leveraging knowledge of the initial password of a new user.