Description

Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 does not validate e-mail address settings, which allows remote authenticated users to have an unspecified impact via a crafted address.

Remediation

References

CVE-2012-0795

Related Vulnerabilities

WordPress Plugin Pressbooks Textbook Cross-Site Scripting (1.2.5)

Grafana Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-12459)

MySQL CVE-2018-2777 Vulnerability (CVE-2018-2777)

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-3455)

MediaWiki Resource Management Errors Vulnerability (CVE-2015-2937)

Severity

Medium

Classification

CVE-2012-0795 CWE-20

Tags

Missing Update Known Vulnerabilities