Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-a34q-gbqw-1bbr
Summary
Moodle allows attackers to bypass intended access restrictions
The choice module in Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 allows remote authenticated users to bypass intended access restrictions by visiting a URL to add or delete responses in the closed state.
Aliases
0
alias CVE-2015-5342
1
alias GHSA-6xpm-q8x9-j3rw
Fixed_packages
0
url pkg:composer/moodle/moodle@2.7.11
purl pkg:composer/moodle/moodle@2.7.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2dxb-v1af-jbax
1
vulnerability VCID-2s6b-tp6p-gue1
2
vulnerability VCID-37pj-u3gh-n7fd
3
vulnerability VCID-4kq5-ctsv-eka8
4
vulnerability VCID-5rbf-4dz3-2qdz
5
vulnerability VCID-65y9-9ur2-pugc
6
vulnerability VCID-83kb-4mk9-t7ge
7
vulnerability VCID-a6pb-47tu-afcg
8
vulnerability VCID-ajkr-fxa1-mkhk
9
vulnerability VCID-an53-nu91-k3d7
10
vulnerability VCID-bjnq-q2nd-1khp
11
vulnerability VCID-dhku-uah4-ykh8
12
vulnerability VCID-duna-st9c-mqbk
13
vulnerability VCID-eaqp-7abt-6kg9
14
vulnerability VCID-eu27-a3px-87ed
15
vulnerability VCID-fsex-f512-pudv
16
vulnerability VCID-jcq6-btgz-fkf6
17
vulnerability VCID-k1bh-ymgt-e7cd
18
vulnerability VCID-k6pw-51st-b3d2
19
vulnerability VCID-k73h-z6j8-gkgz
20
vulnerability VCID-kgvw-uxf4-wbc1
21
vulnerability VCID-m3np-aebb-8qaa
22
vulnerability VCID-m4zv-e3dn-budf
23
vulnerability VCID-mkfz-e1ft-2bcw
24
vulnerability VCID-nntc-dsz1-e3fp
25
vulnerability VCID-qhv1-wgpm-7fh6
26
vulnerability VCID-r6kn-b963-eqge
27
vulnerability VCID-s3ue-e5h8-f3dy
28
vulnerability VCID-s6uu-335k-yfbc
29
vulnerability VCID-vb67-yux5-ayhf
30
vulnerability VCID-vfp6-4h8n-bkax
31
vulnerability VCID-vtq4-fpr8-hudb
32
vulnerability VCID-w9ca-exua-g7ar
33
vulnerability VCID-x7rg-rsb5-pya7
34
vulnerability VCID-xmm4-zw49-3feh
35
vulnerability VCID-y8up-cqtu-jkdw
36
vulnerability VCID-yghg-775s-vber
37
vulnerability VCID-zjrq-np3y-hua5
38
vulnerability VCID-zwkk-zazw-6fgg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.7.11
1
url pkg:composer/moodle/moodle@2.8.9
purl pkg:composer/moodle/moodle@2.8.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2s6b-tp6p-gue1
1
vulnerability VCID-37pj-u3gh-n7fd
2
vulnerability VCID-3kq3-v2u1-fyhz
3
vulnerability VCID-4kq5-ctsv-eka8
4
vulnerability VCID-65y9-9ur2-pugc
5
vulnerability VCID-83kb-4mk9-t7ge
6
vulnerability VCID-a6pb-47tu-afcg
7
vulnerability VCID-ajkr-fxa1-mkhk
8
vulnerability VCID-an53-nu91-k3d7
9
vulnerability VCID-bjnq-q2nd-1khp
10
vulnerability VCID-duna-st9c-mqbk
11
vulnerability VCID-eaqp-7abt-6kg9
12
vulnerability VCID-eu27-a3px-87ed
13
vulnerability VCID-fsex-f512-pudv
14
vulnerability VCID-jcq6-btgz-fkf6
15
vulnerability VCID-k1bh-ymgt-e7cd
16
vulnerability VCID-k6pw-51st-b3d2
17
vulnerability VCID-k73h-z6j8-gkgz
18
vulnerability VCID-kgvw-uxf4-wbc1
19
vulnerability VCID-m3np-aebb-8qaa
20
vulnerability VCID-m4zv-e3dn-budf
21
vulnerability VCID-mkfz-e1ft-2bcw
22
vulnerability VCID-nntc-dsz1-e3fp
23
vulnerability VCID-qhv1-wgpm-7fh6
24
vulnerability VCID-r6kn-b963-eqge
25
vulnerability VCID-s3ue-e5h8-f3dy
26
vulnerability VCID-s6uu-335k-yfbc
27
vulnerability VCID-vb67-yux5-ayhf
28
vulnerability VCID-vfp6-4h8n-bkax
29
vulnerability VCID-w9ca-exua-g7ar
30
vulnerability VCID-x7rg-rsb5-pya7
31
vulnerability VCID-xmm4-zw49-3feh
32
vulnerability VCID-y8up-cqtu-jkdw
33
vulnerability VCID-yghg-775s-vber
34
vulnerability VCID-zjrq-np3y-hua5
35
vulnerability VCID-zwkk-zazw-6fgg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.9
2
url pkg:composer/moodle/moodle@2.9.3
purl pkg:composer/moodle/moodle@2.9.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2s6b-tp6p-gue1
1
vulnerability VCID-37pj-u3gh-n7fd
2
vulnerability VCID-3kq3-v2u1-fyhz
3
vulnerability VCID-4kq5-ctsv-eka8
4
vulnerability VCID-65y9-9ur2-pugc
5
vulnerability VCID-83kb-4mk9-t7ge
6
vulnerability VCID-a6pb-47tu-afcg
7
vulnerability VCID-ajkr-fxa1-mkhk
8
vulnerability VCID-an53-nu91-k3d7
9
vulnerability VCID-bjnq-q2nd-1khp
10
vulnerability VCID-duna-st9c-mqbk
11
vulnerability VCID-eaqp-7abt-6kg9
12
vulnerability VCID-eu27-a3px-87ed
13
vulnerability VCID-fsex-f512-pudv
14
vulnerability VCID-jcq6-btgz-fkf6
15
vulnerability VCID-k1bh-ymgt-e7cd
16
vulnerability VCID-k6pw-51st-b3d2
17
vulnerability VCID-k73h-z6j8-gkgz
18
vulnerability VCID-kgvw-uxf4-wbc1
19
vulnerability VCID-m3np-aebb-8qaa
20
vulnerability VCID-m4zv-e3dn-budf
21
vulnerability VCID-mkfz-e1ft-2bcw
22
vulnerability VCID-nntc-dsz1-e3fp
23
vulnerability VCID-qhv1-wgpm-7fh6
24
vulnerability VCID-r6kn-b963-eqge
25
vulnerability VCID-s3ue-e5h8-f3dy
26
vulnerability VCID-s6uu-335k-yfbc
27
vulnerability VCID-vb67-yux5-ayhf
28
vulnerability VCID-vfp6-4h8n-bkax
29
vulnerability VCID-w9ca-exua-g7ar
30
vulnerability VCID-x7rg-rsb5-pya7
31
vulnerability VCID-xmm4-zw49-3feh
32
vulnerability VCID-y8up-cqtu-jkdw
33
vulnerability VCID-yghg-775s-vber
34
vulnerability VCID-zjrq-np3y-hua5
35
vulnerability VCID-zwkk-zazw-6fgg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.3
Affected_packages
0
url pkg:composer/moodle/moodle@2.8.0
purl pkg:composer/moodle/moodle@2.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1z6j-fs6f-eua1
1
vulnerability VCID-2s6b-tp6p-gue1
2
vulnerability VCID-2y3m-yuaj-vkf2
3
vulnerability VCID-37j1-ym2f-1fbc
4
vulnerability VCID-37pj-u3gh-n7fd
5
vulnerability VCID-3kq3-v2u1-fyhz
6
vulnerability VCID-46jw-xjbu-b3f1
7
vulnerability VCID-4cx7-eaax-8uhr
8
vulnerability VCID-4kq5-ctsv-eka8
9
vulnerability VCID-5hx1-9xbg-g3fn
10
vulnerability VCID-5nfq-4syg-87da
11
vulnerability VCID-5vx4-qtb2-fqe9
12
vulnerability VCID-62yh-cpfr-9bb1
13
vulnerability VCID-65y9-9ur2-pugc
14
vulnerability VCID-7rut-8dau-e3cp
15
vulnerability VCID-83kb-4mk9-t7ge
16
vulnerability VCID-8cc1-hbzm-87bx
17
vulnerability VCID-95mq-m2jz-a3ab
18
vulnerability VCID-9z66-z9af-17f7
19
vulnerability VCID-a34q-gbqw-1bbr
20
vulnerability VCID-a3pu-x51u-1udr
21
vulnerability VCID-a6pb-47tu-afcg
22
vulnerability VCID-ajkr-fxa1-mkhk
23
vulnerability VCID-an53-nu91-k3d7
24
vulnerability VCID-aqc8-tmeg-9fdd
25
vulnerability VCID-b9ej-hx7z-1bb8
26
vulnerability VCID-bjnq-q2nd-1khp
27
vulnerability VCID-d3yp-gq4c-vyf8
28
vulnerability VCID-dnya-ef8u-6bg1
29
vulnerability VCID-duna-st9c-mqbk
30
vulnerability VCID-eaqp-7abt-6kg9
31
vulnerability VCID-emu7-jhv2-zqb8
32
vulnerability VCID-eu27-a3px-87ed
33
vulnerability VCID-evke-m8nn-6ua3
34
vulnerability VCID-fpuj-f6nx-n7a9
35
vulnerability VCID-fsex-f512-pudv
36
vulnerability VCID-g4hn-yz26-1beb
37
vulnerability VCID-gvan-87dt-b7fp
38
vulnerability VCID-hbky-xx53-vkct
39
vulnerability VCID-j11s-2mhg-pfdn
40
vulnerability VCID-jc19-ee46-4uh3
41
vulnerability VCID-jcnw-cwmz-w7cz
42
vulnerability VCID-jcq6-btgz-fkf6
43
vulnerability VCID-k1bh-ymgt-e7cd
44
vulnerability VCID-k6pw-51st-b3d2
45
vulnerability VCID-k73h-z6j8-gkgz
46
vulnerability VCID-kgvw-uxf4-wbc1
47
vulnerability VCID-m3np-aebb-8qaa
48
vulnerability VCID-m4zv-e3dn-budf
49
vulnerability VCID-m6zk-p84r-vbh5
50
vulnerability VCID-mkfz-e1ft-2bcw
51
vulnerability VCID-n9uc-b76m-8fbs
52
vulnerability VCID-nfdb-m7rg-47ca
53
vulnerability VCID-nntc-dsz1-e3fp
54
vulnerability VCID-qhv1-wgpm-7fh6
55
vulnerability VCID-qtt4-455b-abb6
56
vulnerability VCID-r3f7-9paf-83ht
57
vulnerability VCID-r6kn-b963-eqge
58
vulnerability VCID-rscq-xx52-2ua8
59
vulnerability VCID-ryws-mr9v-7yfp
60
vulnerability VCID-s3bw-w61k-eqhy
61
vulnerability VCID-s3ue-e5h8-f3dy
62
vulnerability VCID-s6uu-335k-yfbc
63
vulnerability VCID-sa6m-ecv7-x3ew
64
vulnerability VCID-t214-wxz7-a3df
65
vulnerability VCID-tmwc-f872-mufw
66
vulnerability VCID-trvp-xzf5-pff8
67
vulnerability VCID-ujja-hfkh-wkez
68
vulnerability VCID-uptz-tj66-7yfk
69
vulnerability VCID-v54t-5thx-1beu
70
vulnerability VCID-v6ha-ekxw-7bfr
71
vulnerability VCID-vb67-yux5-ayhf
72
vulnerability VCID-vfp6-4h8n-bkax
73
vulnerability VCID-w9ca-exua-g7ar
74
vulnerability VCID-wavt-rrws-3yhs
75
vulnerability VCID-wg45-hemm-97am
76
vulnerability VCID-x2qp-yggf-z7h7
77
vulnerability VCID-x7rg-rsb5-pya7
78
vulnerability VCID-xmm4-zw49-3feh
79
vulnerability VCID-xy2y-yxfu-xfgm
80
vulnerability VCID-y2vh-7r7h-9ugu
81
vulnerability VCID-y8up-cqtu-jkdw
82
vulnerability VCID-yghg-775s-vber
83
vulnerability VCID-ym1r-ackg-4kc3
84
vulnerability VCID-zjrq-np3y-hua5
85
vulnerability VCID-zwkk-zazw-6fgg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.8.0
1
url pkg:composer/moodle/moodle@2.9.0
purl pkg:composer/moodle/moodle@2.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1z6j-fs6f-eua1
1
vulnerability VCID-2s6b-tp6p-gue1
2
vulnerability VCID-37j1-ym2f-1fbc
3
vulnerability VCID-37pj-u3gh-n7fd
4
vulnerability VCID-3kq3-v2u1-fyhz
5
vulnerability VCID-421n-34cp-cka8
6
vulnerability VCID-4cx7-eaax-8uhr
7
vulnerability VCID-4kq5-ctsv-eka8
8
vulnerability VCID-5hx1-9xbg-g3fn
9
vulnerability VCID-65y9-9ur2-pugc
10
vulnerability VCID-7rut-8dau-e3cp
11
vulnerability VCID-83kb-4mk9-t7ge
12
vulnerability VCID-8cc1-hbzm-87bx
13
vulnerability VCID-a34q-gbqw-1bbr
14
vulnerability VCID-a6pb-47tu-afcg
15
vulnerability VCID-ajkr-fxa1-mkhk
16
vulnerability VCID-an53-nu91-k3d7
17
vulnerability VCID-b9ej-hx7z-1bb8
18
vulnerability VCID-bjnq-q2nd-1khp
19
vulnerability VCID-dnya-ef8u-6bg1
20
vulnerability VCID-duna-st9c-mqbk
21
vulnerability VCID-eaqp-7abt-6kg9
22
vulnerability VCID-emu7-jhv2-zqb8
23
vulnerability VCID-eu27-a3px-87ed
24
vulnerability VCID-evke-m8nn-6ua3
25
vulnerability VCID-fpuj-f6nx-n7a9
26
vulnerability VCID-fsex-f512-pudv
27
vulnerability VCID-jc19-ee46-4uh3
28
vulnerability VCID-jcnw-cwmz-w7cz
29
vulnerability VCID-jcq6-btgz-fkf6
30
vulnerability VCID-k1bh-ymgt-e7cd
31
vulnerability VCID-k6pw-51st-b3d2
32
vulnerability VCID-k73h-z6j8-gkgz
33
vulnerability VCID-kgvw-uxf4-wbc1
34
vulnerability VCID-m3np-aebb-8qaa
35
vulnerability VCID-m4zv-e3dn-budf
36
vulnerability VCID-m6zk-p84r-vbh5
37
vulnerability VCID-mkfz-e1ft-2bcw
38
vulnerability VCID-nntc-dsz1-e3fp
39
vulnerability VCID-qhv1-wgpm-7fh6
40
vulnerability VCID-qtt4-455b-abb6
41
vulnerability VCID-r6kn-b963-eqge
42
vulnerability VCID-ryws-mr9v-7yfp
43
vulnerability VCID-s3ue-e5h8-f3dy
44
vulnerability VCID-s6uu-335k-yfbc
45
vulnerability VCID-sa6m-ecv7-x3ew
46
vulnerability VCID-t214-wxz7-a3df
47
vulnerability VCID-trvp-xzf5-pff8
48
vulnerability VCID-ujja-hfkh-wkez
49
vulnerability VCID-v54t-5thx-1beu
50
vulnerability VCID-v6ha-ekxw-7bfr
51
vulnerability VCID-vb67-yux5-ayhf
52
vulnerability VCID-vfp6-4h8n-bkax
53
vulnerability VCID-w9ca-exua-g7ar
54
vulnerability VCID-wg45-hemm-97am
55
vulnerability VCID-x2qp-yggf-z7h7
56
vulnerability VCID-x7rg-rsb5-pya7
57
vulnerability VCID-xmm4-zw49-3feh
58
vulnerability VCID-xy2y-yxfu-xfgm
59
vulnerability VCID-y8up-cqtu-jkdw
60
vulnerability VCID-yghg-775s-vber
61
vulnerability VCID-zjrq-np3y-hua5
62
vulnerability VCID-zwkk-zazw-6fgg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.9.0
References
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-51569
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-51569
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-5342
reference_id
reference_type
scores
0
value 0.00179
scoring_system epss
scoring_elements 0.39179
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-5342
2
reference_url https://github.com/moodle/moodle
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle
3
reference_url https://github.com/moodle/moodle/commit/02d8c8ca394ba053905f9b87c155042aabf0ce1b
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/02d8c8ca394ba053905f9b87c155042aabf0ce1b
4
reference_url https://github.com/moodle/moodle/commit/09bb6f19e5814deb25ae6ceb8270063430b8941f
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/09bb6f19e5814deb25ae6ceb8270063430b8941f
5
reference_url https://github.com/moodle/moodle/commit/5c16db4fc561c97b6a907398ea081cdaf6590214
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/5c16db4fc561c97b6a907398ea081cdaf6590214
6
reference_url https://github.com/moodle/moodle/commit/6283c33979001b035f9fc565b869296f66a61c4e
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/6283c33979001b035f9fc565b869296f66a61c4e
7
reference_url https://github.com/moodle/moodle/commit/7ca8c34045eb0d2031652b452492fe4abb2c7c8a
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/7ca8c34045eb0d2031652b452492fe4abb2c7c8a
8
reference_url https://github.com/moodle/moodle/commit/97394274ee29f0a6eecab330b5bbb8ee335e7ece
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/97394274ee29f0a6eecab330b5bbb8ee335e7ece
9
reference_url https://github.com/moodle/moodle/commit/bdaa571437c6357f322871b068f02a4520b7a23d
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/bdaa571437c6357f322871b068f02a4520b7a23d
10
reference_url https://github.com/moodle/moodle/commit/fb2491effb1a7d5d7abb0efba5b3929342990514
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/moodle/moodle/commit/fb2491effb1a7d5d7abb0efba5b3929342990514
11
reference_url https://moodle.org/mod/forum/discuss.php?d=323237
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://moodle.org/mod/forum/discuss.php?d=323237
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2015-5342
reference_id CVE-2015-5342
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2015-5342
13
reference_url https://github.com/advisories/GHSA-6xpm-q8x9-j3rw
reference_id GHSA-6xpm-q8x9-j3rw
reference_type
scores
url https://github.com/advisories/GHSA-6xpm-q8x9-j3rw
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 264
name Permissions, Privileges, and Access Controls
description Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-a34q-gbqw-1bbr