CVE-2009-4304

Metadata

CVE-2009-4304
7.5
docs.moodle.org, docs.moodle.org, moodle.org, securityfocus.com, vupen.com, redhat.com, redhat.com, redhat.com
2009-12-16
2017-06-06 20:21

Description

Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not use a random password salt in config.php, which makes it easier for attackers to conduct brute-force password guessing attacks.

Related Vulnerabilities

platform vulnerability
CVE-2009-4304 moodle
CVE-2009-4304