Description

Unspecified vulnerability in the user editing interface in Moodle 1.5.x, 1.6 before 1.6.6, and 1.7 before 1.7.3 allows remote authenticated users to gain privileges via unknown vectors.

Remediation

References

CVE-2008-6125

Related Vulnerabilities

Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2021-41305)

IBM WebSEAL Incorrect Default Permissions Vulnerability (CVE-2023-38370)

WordPress Plugin GS Filterable Portfolio Cross-Site Scripting (1.6.0)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-3294)

WordPress Plugin RSS Includes Pages Cross-Site Scripting (3.6)

Severity

Medium

Classification

CVE-2008-6125 CWE-264

Tags

Missing Update Known Vulnerabilities