Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2012-4407

lib/filelib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly check the publication state of blog files, which allows remote attackers to obtain sensitive information by reading a blog entry that references a non-public file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.3%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2012-4407
  • Moodle » Moodle » Version: 2.1.0
    cpe:2.3:a:moodle:moodle:2.1.0
  • Moodle » Moodle » Version: 2.1.1
    cpe:2.3:a:moodle:moodle:2.1.1
  • Moodle » Moodle » Version: 2.1.2
    cpe:2.3:a:moodle:moodle:2.1.2
  • Moodle » Moodle » Version: 2.1.3
    cpe:2.3:a:moodle:moodle:2.1.3
  • Moodle » Moodle » Version: 2.1.4
    cpe:2.3:a:moodle:moodle:2.1.4
  • Moodle » Moodle » Version: 2.1.5
    cpe:2.3:a:moodle:moodle:2.1.5
  • Moodle » Moodle » Version: 2.1.6
    cpe:2.3:a:moodle:moodle:2.1.6
  • Moodle » Moodle » Version: 2.1.7
    cpe:2.3:a:moodle:moodle:2.1.7
  • Moodle » Moodle » Version: 2.2.0
    cpe:2.3:a:moodle:moodle:2.2.0
  • Moodle » Moodle » Version: 2.2.1
    cpe:2.3:a:moodle:moodle:2.2.1
  • Moodle » Moodle » Version: 2.2.2
    cpe:2.3:a:moodle:moodle:2.2.2
  • Moodle » Moodle » Version: 2.2.3
    cpe:2.3:a:moodle:moodle:2.2.3
  • Moodle » Moodle » Version: 2.2.4
    cpe:2.3:a:moodle:moodle:2.2.4
  • Moodle » Moodle » Version: 2.3.0
    cpe:2.3:a:moodle:moodle:2.3.0
  • Moodle » Moodle » Version: 2.3.1
    cpe:2.3:a:moodle:moodle:2.3.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved