The file_browser component in Moodle 2.0.x prior to 2.0.5 and 2.1.x prior to 2.1.2 does not properly restrict access to category and course data, which allows remote malicious users to obtain potentially sensitive information via a request for a file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle 2.0.2 |
||
moodle moodle 2.0.1 |
||
moodle moodle 2.0.4 |
||
moodle moodle 2.0.3 |
||
moodle moodle 2.1.1 |
||
moodle moodle 2.0.0 |
||
moodle moodle 2.1.0 |