Description

Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 allows remote attackers to view the profile images of arbitrary user accounts via unspecified vectors.

Remediation

References

CVE-2012-0793

Related Vulnerabilities

Oracle JRE CVE-2013-5802 Vulnerability (CVE-2013-5802)

MySQL CVE-2020-2627 Vulnerability (CVE-2020-2627)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-6296)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-4920)

WordPress Plugin Gallery-Responsive Photo and Video Gallery by Limb Cross-Site Scripting (1.3.2)

Severity

Medium

Classification

CVE-2012-0793 CWE-264

Tags

Missing Update Known Vulnerabilities