Description

Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 does not validate e-mail address settings, which allows remote authenticated users to have an unspecified impact via a crafted address.

Remediation

References

CVE-2012-0795

Related Vulnerabilities

PHP Use of Uninitialized Resource Vulnerability (CVE-2019-11038)

WordPress Plugin Affiliates Manager Cross-Site Scripting (2.8.9)

WordPress Plugin Advanced Shipment Tracking for WooCommerce Security Bypass (3.2.6)

WordPress Plugin Fancy Slideshows Security Bypass (2.4)

ReviveAdserver Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-7149)

Severity

Medium

Classification

CVE-2012-0795 CWE-20

Tags

Missing Update Known Vulnerabilities