4.3
CVSSv3

CVE-2015-5272

Published: 22/02/2016 Updated: 01/12/2020
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N

Vulnerability Summary

The Forum module in Moodle 2.7.x prior to 2.7.10 allows remote authenticated users to post to arbitrary groups by leveraging the teacher role, as demonstrated by a post directed to "all participants."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

moodle moodle 2.7.7

moodle moodle 2.7.6

moodle moodle 2.7.3

moodle moodle 2.7.2

moodle moodle 2.7.5

moodle moodle 2.7.4

moodle moodle 2.7.9

moodle moodle 2.7.8

moodle moodle 2.7.1

moodle moodle 2.7.0