Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2016-2155

The grade-reporting feature in Singleview (aka Single View) in Moodle 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not consider the moodle/grade:manage capability, which allows remote authenticated users to modify "Exclude grade" settings by leveraging the Non-Editing Instructor role.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.4%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
Products affected by CVE-2016-2155
  • Moodle » Moodle » Version: 2.8.0
    cpe:2.3:a:moodle:moodle:2.8.0
  • Moodle » Moodle » Version: 2.8.1
    cpe:2.3:a:moodle:moodle:2.8.1
  • Moodle » Moodle » Version: 2.8.10
    cpe:2.3:a:moodle:moodle:2.8.10
  • Moodle » Moodle » Version: 2.8.2
    cpe:2.3:a:moodle:moodle:2.8.2
  • Moodle » Moodle » Version: 2.8.3
    cpe:2.3:a:moodle:moodle:2.8.3
  • Moodle » Moodle » Version: 2.8.4
    cpe:2.3:a:moodle:moodle:2.8.4
  • Moodle » Moodle » Version: 2.8.5
    cpe:2.3:a:moodle:moodle:2.8.5
  • Moodle » Moodle » Version: 2.8.6
    cpe:2.3:a:moodle:moodle:2.8.6
  • Moodle » Moodle » Version: 2.8.7
    cpe:2.3:a:moodle:moodle:2.8.7
  • Moodle » Moodle » Version: 2.8.8
    cpe:2.3:a:moodle:moodle:2.8.8
  • Moodle » Moodle » Version: 2.8.9
    cpe:2.3:a:moodle:moodle:2.8.9
  • Moodle » Moodle » Version: 2.9.0
    cpe:2.3:a:moodle:moodle:2.9.0
  • Moodle » Moodle » Version: 2.9.1
    cpe:2.3:a:moodle:moodle:2.9.1
  • Moodle » Moodle » Version: 2.9.2
    cpe:2.3:a:moodle:moodle:2.9.2
  • Moodle » Moodle » Version: 2.9.3
    cpe:2.3:a:moodle:moodle:2.9.3
  • Moodle » Moodle » Version: 2.9.4
    cpe:2.3:a:moodle:moodle:2.9.4
  • Moodle » Moodle » Version: 3.0.0
    cpe:2.3:a:moodle:moodle:3.0.0
  • Moodle » Moodle » Version: 3.0.1
    cpe:2.3:a:moodle:moodle:3.0.1
  • Moodle » Moodle » Version: 3.0.2
    cpe:2.3:a:moodle:moodle:3.0.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved