Description

Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 does not validate e-mail address settings, which allows remote authenticated users to have an unspecified impact via a crafted address.

Remediation

References

CVE-2012-0795

Related Vulnerabilities

WordPress Plugin Advanced Access Manager Multiple Vulnerabilities (6.6.1)

WordPress Plugin Comment Rating 'path' Parameter Cross-Site Scripting (2.9.20)

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1963)

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1000862)

Oracle Database Server CVE-2010-0892 Vulnerability (CVE-2010-0892)

Severity

Medium

Classification

CVE-2012-0795 CWE-20

Tags

Missing Update Known Vulnerabilities