lib/ajax/getnavbranch.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3, when the forcelogin feature is enabled, allows remote attackers to obtain sensitive category-detail information from the navigation branch by leveraging the guest role for an Ajax request.
| Date Added | Due Date | Vulnerability Name | Required Action |
|---|---|---|---|
| N/A |
| Type | Version | Base score | Base severity | Vector |
|---|---|---|---|---|
| Primary | 3.0 | 4.3 | MEDIUM | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
| Primary | 2.0 | 4.0 | MEDIUM | AV:N/AC:L/Au:S/C:P/I:N/A:N |
| Hyperlink | Source | Resource |
|---|---|---|
| http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52774 | secalert@redhat.com | N/A |
| http://www.openwall.com/lists/oss-security/2016/03/21/1 | secalert@redhat.com | N/A |
| http://www.securitytracker.com/id/1035333 | secalert@redhat.com | N/A |
| https://moodle.org/mod/forum/discuss.php?d=330180 | secalert@redhat.com | Vendor Advisory |
| http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52774 | af854a3a-2127-422b-91ae-364da2661108 | N/A |
| http://www.openwall.com/lists/oss-security/2016/03/21/1 | af854a3a-2127-422b-91ae-364da2661108 | N/A |
| http://www.securitytracker.com/id/1035333 | af854a3a-2127-422b-91ae-364da2661108 | N/A |
| https://moodle.org/mod/forum/discuss.php?d=330180 | af854a3a-2127-422b-91ae-364da2661108 | Vendor Advisory |