Description

mod/glossary/showentry.php in the Glossary module for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not properly perform access control, which allows attackers to read unauthorized Glossary entries via unknown vectors.

Remediation

References

CVE-2009-4299

Related Vulnerabilities

Joomla CVE-2019-15028 Vulnerability (CVE-2019-15028)

WordPress Plugin cformsII 'lib_ajax.php' Multiple Cross-Site Scripting Vulnerabilities (13.1)

Multiple SugarCRM Products Remote Code Execution Vulnerability (CVE-2023-22952)

Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.5)

WordPress Plugin Simple 301 Redirects-Addon-Bulk Uploader Multiple Security Bypass Vulnerabilities (1.2.4)

Severity

Medium

Classification

CVE-2009-4299 CWE-264

Tags

Missing Update Known Vulnerabilities