Candidate: CVE-2012-5480
PublicDate: 2012-11-21 12:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5480
 https://moodle.org/mod/forum/discuss.php?d=216160
 http://openwall.com/lists/oss-security/2012/11/19/1
 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-35558
Description:
 The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before
 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended
 restrictions on reading other participants' entries via an advanced search.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_moodle:
upstream_moodle: needs-triage
hardy_moodle: ignored (reached end-of-life)
lucid_moodle: not-affected
oneiric_moodle: not-affected
precise_moodle: not-affected (1.9.9.dfsg2-6)
quantal_moodle: ignored (reached end-of-life)
raring_moodle: not-affected (2.2.6.dfsg-1)
saucy_moodle: not-affected (2.2.6.dfsg-1)
trusty_moodle: not-affected (2.2.6.dfsg-1)
trusty/esm_moodle: DNE (trusty was not-affected [2.2.6.dfsg-1])
devel_moodle: not-affected (2.2.6.dfsg-1)