Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2011-4585

login/change_password.php in Moodle 1.9.x before 1.9.15 does not use https for the change-password form even if the httpslogin option is enabled, which allows remote attackers to obtain credentials by sniffing the network.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.1%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2011-4585
  • Moodle » Moodle » Version: 1.9.1
    cpe:2.3:a:moodle:moodle:1.9.1
  • Moodle » Moodle » Version: 1.9.10
    cpe:2.3:a:moodle:moodle:1.9.10
  • Moodle » Moodle » Version: 1.9.11
    cpe:2.3:a:moodle:moodle:1.9.11
  • Moodle » Moodle » Version: 1.9.12
    cpe:2.3:a:moodle:moodle:1.9.12
  • Moodle » Moodle » Version: 1.9.13
    cpe:2.3:a:moodle:moodle:1.9.13
  • Moodle » Moodle » Version: 1.9.14
    cpe:2.3:a:moodle:moodle:1.9.14
  • Moodle » Moodle » Version: 1.9.2
    cpe:2.3:a:moodle:moodle:1.9.2
  • Moodle » Moodle » Version: 1.9.3
    cpe:2.3:a:moodle:moodle:1.9.3
  • Moodle » Moodle » Version: 1.9.4
    cpe:2.3:a:moodle:moodle:1.9.4
  • Moodle » Moodle » Version: 1.9.5
    cpe:2.3:a:moodle:moodle:1.9.5
  • Moodle » Moodle » Version: 1.9.6
    cpe:2.3:a:moodle:moodle:1.9.6
  • Moodle » Moodle » Version: 1.9.7
    cpe:2.3:a:moodle:moodle:1.9.7
  • Moodle » Moodle » Version: 1.9.8
    cpe:2.3:a:moodle:moodle:1.9.8
  • Moodle » Moodle » Version: 1.9.9
    cpe:2.3:a:moodle:moodle:1.9.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved