Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Permissions Privileges and Access Controls Vulnerability - CVE-2011-4300 - Vulnerability Database
Moodle

Moodle Permissions Privileges and Access Controls Vulnerability - CVE-2011-4300

Medium
Reference: CVE-2011-4300
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-4300
Title: Moodle Permissions Privileges and Access Controls Vulnerability
Overview:

The file_browser component in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not properly restrict access to category and course data which allows remote attackers to obtain potentially sensitive information via a request for a file.