Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2013-2079

mod/assign/locallib.php in the assignment module in Moodle 2.3.x before 2.3.7 and 2.4.x before 2.4.4 does not consider capability requirements during the processing of ZIP assignment-archive download (aka downloadall) requests, which allows remote authenticated users to read other users' assignments by leveraging the student role.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.7%
CVSS Severity
CVSS v2 Score 4.0
References
Products affected by CVE-2013-2079
  • Moodle » Moodle » Version: 2.3.0
    cpe:2.3:a:moodle:moodle:2.3.0
  • Moodle » Moodle » Version: 2.3.1
    cpe:2.3:a:moodle:moodle:2.3.1
  • Moodle » Moodle » Version: 2.3.2
    cpe:2.3:a:moodle:moodle:2.3.2
  • Moodle » Moodle » Version: 2.3.3
    cpe:2.3:a:moodle:moodle:2.3.3
  • Moodle » Moodle » Version: 2.3.4
    cpe:2.3:a:moodle:moodle:2.3.4
  • Moodle » Moodle » Version: 2.3.5
    cpe:2.3:a:moodle:moodle:2.3.5
  • Moodle » Moodle » Version: 2.3.6
    cpe:2.3:a:moodle:moodle:2.3.6
  • Moodle » Moodle » Version: 2.4.0
    cpe:2.3:a:moodle:moodle:2.4.0
  • Moodle » Moodle » Version: 2.4.1
    cpe:2.3:a:moodle:moodle:2.4.1
  • Moodle » Moodle » Version: 2.4.2
    cpe:2.3:a:moodle:moodle:2.4.2
  • Moodle » Moodle » Version: 2.4.3
    cpe:2.3:a:moodle:moodle:2.4.3


Products
Pricing
Contact Us

Shodan ® - All rights reserved