Description
The ip_in_range function in mnet/lib.php in MNET in Moodle 1.9.x before 1.9.15 uses an incorrect data type, which allows remote attackers to bypass intended IP address restrictions via an XMLRPC request.
Remediation
References
Related Vulnerabilities
WordPress Plugin WooCommerce Information Disclosure (4.5.2)
Oracle Application Server CVE-2007-5525 Vulnerability (CVE-2007-5525)
MySQL CVE-2019-2513 Vulnerability (CVE-2019-2513)
Envoy Proxy Uncontrolled Resource Consumption Vulnerability (CVE-2020-12605)
Magento Improper Input Validation Vulnerability (CVE-2019-7885)