Search for packages
| purl | pkg:composer/moodle/moodle@2.4.0-beta |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-958z-dzyk-xuf1
Aliases: CVE-2013-4522 GHSA-vm9c-39jx-q45w |
Moodle vulnerable to Exposure of Sensitive Information to an Unauthorized Actor lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy server. |
Affected by 230 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 232 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-05T21:25:20.635965+00:00 | GHSA Importer | Affected by | VCID-958z-dzyk-xuf1 | https://github.com/advisories/GHSA-vm9c-39jx-q45w | 38.6.0 |
| 2026-06-02T04:42:43.045358+00:00 | GitLab Importer | Affected by | VCID-958z-dzyk-xuf1 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2013-4522.yml | 38.6.0 |