Description

repository/webdav/lib.php in Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 includes the WebDAV password in the configuration form, which allows remote authenticated administrators to obtain sensitive information by configuring an instance.

Remediation

References

CVE-2013-1832

Related Vulnerabilities

MySQL CVE-2022-21599 Vulnerability (CVE-2022-21599)

WordPress Plugin Plugmatter Pricing Table Cross-Site Scripting (1.0.32)

WordPress Plugin Social Media Share Buttons & Social Sharing Icons Multiple Unspecified Vulnerabilities (1.2.1)

WordPress Plugin EMC2 Custom Help Videos Cross-Site Scripting (1.2)

WordPress Plugin WP Upload Restriction Multiple Vulnerabilities (2.2.3)

Severity

Medium

Classification

CVE-2013-1832 CWE-200

Tags

Missing Update Known Vulnerabilities