Moodle: Recently reported fixes for discovered vulnerabilities.

Posted on Posted in Moodle

Decription: A list of new vulnerabilities have been announced by moodle developers.

Changes:

  • CSRF possible in the URL that marks forum posts as read [CVE-2016-3734]
  • During the course restore teacher could overwrite idnumber even without having the capability to change it [CVE-2016-3733]
  • Capability check to view other badges was performed for the current user instead for the user whose badges are being viewed [CVE-2016-3732]
  • Name of the inaccessible forum or forum discussion could be disclosed as part of the error message on the subscription page [CVE-2016-3731]
  • Name of the inaccessible forum or forum discussion could be disclosed as part of the error message on the subscription page [CVE-2016-3731]
  • User editing form only disabled the profile fields in UI and did not actually prevent users from editing them [CVE-2016-3729]

Impact:

  • Forum markposts.php missing sesskey check
  • Course idnumber not protected from teacher restore
  • Badges code checks viewotherbadges capability in the wrong context
  • Information disclosure of hidden forum names and sub-names.
  • Information disclosure of hidden forum names and sub-names.
  • Tricky users can change locked profile fields

Recommended action: Apply vendor issued code changes

Origin URLs:

Leave a Reply

Your email address will not be published. Required fields are marked *