CVE-2009-4300

Metadata

CVE-2009-4300
5.0
docs.moodle.org, docs.moodle.org, moodle.org, securityfocus.com, vupen.com, redhat.com, redhat.com, redhat.com
2009-12-16
2017-06-06 20:21

Description

Multiple unspecified authentication plugins in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 store the MD5 hashes for passwords in the user table, even when the cached hashes are not used by the plugin, which might make it easier for attackers to obtain credentials via unspecified vectors.

Related Vulnerabilities

platform vulnerability
CVE-2009-4300 moodle
CVE-2009-4300