Moodle 安全漏洞

漏洞信息详情

Moodle 安全漏洞

• CNNVD编号：CNNVD-200407-052
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2004-0725
  
• 漏洞类型：
  
  
  其他
  
• 发布时间：
  
  2004-07-27
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2020-12-03
  
• 厂        商：
  
  moodle
• 漏洞来源：
  Discovery is credi…

Moodle是一套免费、开源的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。

Moodle 1.3.2和1.4 dev版本的help.php存在安全漏洞。远程攻击者借助file参数注入任意web脚本或HTML。

This issue has been addressed in version 1.3.3 of the software.

Moodle moodle 1.1.1

• Moodle moodle-1.3.3.tgz

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz“>

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz

Moodle moodle 1.2

• Moodle moodle-1.3.3.tgz

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz“>

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz

Moodle moodle 1.2.1

• Moodle moodle-1.3.3.tgz

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz“>

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz

Moodle moodle 1.3

• Moodle moodle-1.3.3.tgz

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz“>

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz

Moodle moodle 1.3.1

• Moodle moodle-1.3.3.tgz

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz“>

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz

Moodle moodle 1.3.2

• Moodle moodle-1.3.3.tgz

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz“>

  
  http://moodle.org/download.php/sourceforge/moodle-1.3.3.tgz

来源:BID

链接:https://www.securityfocus.com/bid/10718

来源:XF

链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/16684

来源:CONFIRM

链接:http://cvs.sourceforge.net/viewcvs.py/moodle/moodle/help.php

来源:BUGTRAQ

链接:http://marc.info/?l=bugtraq&m=108973588000027&w=2