Description
Multiple unspecified authentication plugins in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 store the MD5 hashes for passwords in the user table, even when the cached hashes are not used by the plugin, which might make it easier for attackers to obtain credentials via unspecified vectors.
Remediation
References
Related Vulnerabilities
Ruby on Rails Inefficient Regular Expression Complexity Vulnerability (CVE-2023-22792)
WordPress Plugin WordPress Leads Cross-Site Scripting (1.6.2)
WordPress Plugin MyBookTable Bookstore by Author Media Unspecified Vulnerability (2.1.4)
PHP Numeric Errors Vulnerability (CVE-2008-2108)
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads PHP Code Injection (1.3)