CVE-2009-4303
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2009-4303
Status
Candidate
Description
Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores (1) password hashes and (2) unspecified "secrets" in backup files, which might allow attackers to obtain sensitive information.
Severity
Medium
CVSS score
5
CVSS vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Phase
Assigned (16.12.2009)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-4303
References
BID :
37244
CONFIRM :
http://docs.moodle.org/en/Moodle_1.8.11_release_notes
CONFIRM :
http://docs.moodle.org/en/Moodle_1.9.7_release_notes
CONFIRM :
http://moodle.org/mod/forum/discuss.php?d=139110
FEDORA :
FEDORA-2009-13040
FEDORA :
FEDORA-2009-13065
FEDORA :
FEDORA-2009-13080
SECUNIA :
37614
VUPEN :
ADV-2009-3455
SecurityVulns:
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
