Description

Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 does not validate e-mail address settings, which allows remote authenticated users to have an unspecified impact via a crafted address.

Remediation

References

CVE-2012-0795

Related Vulnerabilities

WordPress Plugin DM Albums 'album.php' Remote File Inclusion (1.9.2)

WordPress Plugin YITH WooCommerce Ajax Search Unspecified Vulnerability (1.2.7)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.7)

SugarCRM Gain Sensitive Information Vulnerability (CVE-2004-1226)

Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7950)

Severity

Medium

Classification

CVE-2012-0795 CWE-20

Tags

Missing Update Known Vulnerabilities