Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2012-3394

auth/ldap/ntlmsso_attempt.php in Moodle 2.0.x before 2.0.10, 2.1.x before 2.1.7, 2.2.x before 2.2.4, and 2.3.x before 2.3.1 redirects users from an https LDAP login URL to an http URL, which allows remote attackers to obtain sensitive information by sniffing the network.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.0%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2012-3394
  • Moodle » Moodle » Version: 2.1.0
    cpe:2.3:a:moodle:moodle:2.1.0
  • Moodle » Moodle » Version: 2.1.1
    cpe:2.3:a:moodle:moodle:2.1.1
  • Moodle » Moodle » Version: 2.1.2
    cpe:2.3:a:moodle:moodle:2.1.2
  • Moodle » Moodle » Version: 2.1.3
    cpe:2.3:a:moodle:moodle:2.1.3
  • Moodle » Moodle » Version: 2.1.4
    cpe:2.3:a:moodle:moodle:2.1.4
  • Moodle » Moodle » Version: 2.1.5
    cpe:2.3:a:moodle:moodle:2.1.5
  • Moodle » Moodle » Version: 2.1.6
    cpe:2.3:a:moodle:moodle:2.1.6
  • Moodle » Moodle » Version: 2.2.0
    cpe:2.3:a:moodle:moodle:2.2.0
  • Moodle » Moodle » Version: 2.2.1
    cpe:2.3:a:moodle:moodle:2.2.1
  • Moodle » Moodle » Version: 2.2.2
    cpe:2.3:a:moodle:moodle:2.2.2
  • Moodle » Moodle » Version: 2.2.3
    cpe:2.3:a:moodle:moodle:2.2.3
  • Moodle » Moodle » Version: 2.3.0
    cpe:2.3:a:moodle:moodle:2.3.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved