CVE-2009-4303
Published: 16 December 2009
Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores (1) password hashes and (2) unspecified "secrets" in backup files, which might allow attackers to obtain sensitive information.
Priority
Status
Package | Release | Status |
---|---|---|
moodle Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
hardy |
Ignored
(end of life)
|
|
intrepid |
Ignored
(end of life, was needed)
|
|
jaunty |
Ignored
(end of life)
|
|
karmic |
Ignored
(end of life)
|
|
lucid |
Ignored
(end of life)
|
|
maverick |
Ignored
(end of life)
|
|
natty |
Not vulnerable
(1.9.9.dfsg2-2)
|
|
oneiric |
Not vulnerable
(1.9.9.dfsg2-3)
|
|
precise |
Not vulnerable
(1.9.9.dfsg2-6)
|
|
quantal |
Not vulnerable
(1.9.9.dfsg2-6)
|
|
raring |
Not vulnerable
(1.9.9.dfsg2-6)
|
|
saucy |
Not vulnerable
(1.9.9.dfsg2-6)
|
|
upstream |
Needs triage
|