Description

A flaw was found in Moodle before 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18. The size of users' private file uploads via email were not correctly checked, so their quota allowance could be exceeded.

Remediation

References

CVE-2019-10134

Related Vulnerabilities

MySQL CVE-2015-2639 Vulnerability (CVE-2015-2639)

WordPress Plugin WP DSGVO Tools (GDPR) Cross-Site Scripting (3.1.23)

Collabtive Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2010-5285)

Oracle Database Server CVE-2019-2954 Vulnerability (CVE-2019-2954)

MySQL CVE-2024-21237 Vulnerability (CVE-2024-21237)

Severity

Low

Classification

CVE-2019-10134 CWE-20 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities