漏洞信息详情
Moodle 安全漏洞
- CNNVD编号:CNNVD-200408-096
- 危害等级: 低危
- CVE编号: CVE-2004-1711
- 漏洞类型: 其他
- 发布时间: 2004-08-06
- 威胁类型: 远程
- 更新时间: 2020-12-03
- 厂 商: moodle
- 漏洞来源: Javier Ubilla and ...
漏洞简介
Moodle是一套免费、开源的电子学习软件平台,也称课程管理系统、学习管理系统或虚拟学习环境。
Moodle before 1.3版本中的post.php存在安全漏洞。远程攻击者可以通过reply参数住入任意web脚本或者HTML。
漏洞公告
Versions 1.3.4 and newer are reported to be fixed.
Moodle moodle 1.1.1
Moodle moodle-1.3.4.tgz
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz">
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz
Moodle moodle 1.2
Moodle moodle-1.3.4.tgz
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz">
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz
Moodle moodle 1.2.1
Moodle moodle-1.3.4.tgz
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz">
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz
Moodle moodle 1.3
Moodle moodle-1.3.4.tgz
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz">
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz
Moodle moodle 1.3.1
Moodle moodle-1.3.4.tgz
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz">
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz
Moodle moodle 1.3.2
Moodle moodle-1.3.4.tgz
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz">
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz
Moodle moodle 1.3.3
Moodle moodle-1.3.4.tgz
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz">
http://moodle.org/download.php/sourceforge/moodle-1.3.4.tgz
参考网址
来源:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2004-1711※http://www.securityfocus.com/bid/10884
链接:无
来源:BID
链接:https://www.securityfocus.com/bid/10884
来源:SECUNIA
链接:http://secunia.com/advisories/12262
来源:BUGTRAQ
链接:http://marc.info/?l=bugtraq&m=109182851216921&w=2
来源:XF
链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/16924
受影响实体
- Moodle Moodle:1.3.3
- Moodle Moodle:1.3.1
- Moodle Moodle:1.3.2
- Moodle Moodle:1.2.1
- Moodle Moodle:1.3
补丁
暂无
评论