CVE-2024-55645 | Moodle up to 4.1.14/4.3.8/4.4.4/4.5.0 Email Change Confirmation Token information disclosure

Inserito da Angelo Barbosa | Dic 17, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Moodle up to 4.1.14/4.3.8/4.4.4/4.5.0. Affected by this issue is some unknown functionality of the component Email Change Confirmation Token. The manipulation leads to information disclosure.

This vulnerability is handled as CVE-2024-55645. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-55645 | Moodle up to 4.1.14/4.3.8/4.4.4/4.5.0 Email Change Confirmation Token information disclosure

Post correlati

CVE-2022-48843 | Linux Kernel up to 5.4.185/5.10.106/5.15.29/5.16.15 vrr null pointer dereference

CVE-2024-24940 | JetBrains IntelliJ IDEA prior 2023.3.3 Archive Extraction path traversal

CVE-2024-4796 | Campcodes Online Laundry Management System 1.0 /manage_inv.php id sql injection

CVE-2024-36053 | linuxmint mintupload up to 4.2.0 service os command injection