Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-fu6f-fjmn-g7eh
Summary
Moodle allows remote authenticated users to reassign notes
notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated users to reassign notes via a modified (1) userid or (2) courseid field.
Aliases
0
alias CVE-2013-1834
1
alias GHSA-prrh-679x-79qh
Fixed_packages
0
url pkg:composer/moodle/moodle@2.2.8
purl pkg:composer/moodle/moodle@2.2.8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.2.8
1
url pkg:composer/moodle/moodle@2.3.5
purl pkg:composer/moodle/moodle@2.3.5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.3.5
2
url pkg:composer/moodle/moodle@2.4.2
purl pkg:composer/moodle/moodle@2.4.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.4.2
Affected_packages
0
url pkg:composer/moodle/moodle@1.9.0
purl pkg:composer/moodle/moodle@1.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3s7c-pafx-17f4
1
vulnerability VCID-4amd-2pjn-3bgm
2
vulnerability VCID-88fm-dedd-7fbm
3
vulnerability VCID-9ca4-gyeh-qkhc
4
vulnerability VCID-ac86-94ck-ybfu
5
vulnerability VCID-canh-cy27-mbeh
6
vulnerability VCID-ek29-cpbw-77fh
7
vulnerability VCID-fu6f-fjmn-g7eh
8
vulnerability VCID-ruuz-q6ec-t7c9
9
vulnerability VCID-wgm7-718q-7uff
10
vulnerability VCID-yxtg-9ex7-juhz
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@1.9.0
1
url pkg:composer/moodle/moodle@2.3.0
purl pkg:composer/moodle/moodle@2.3.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uce-2wtr-8bfg
1
vulnerability VCID-2676-n5ah-aqbh
2
vulnerability VCID-2vsp-tbwq-1qhf
3
vulnerability VCID-41up-e414-hyba
4
vulnerability VCID-8c87-x99e-tqav
5
vulnerability VCID-9kbu-4u3w-jufu
6
vulnerability VCID-b2tv-8q9g-qqfz
7
vulnerability VCID-bgaz-b5zd-e7aj
8
vulnerability VCID-et8t-f1u1-kudb
9
vulnerability VCID-fu6f-fjmn-g7eh
10
vulnerability VCID-fwn7-hez1-ayhj
11
vulnerability VCID-kqg2-2xqk-q7ga
12
vulnerability VCID-mh2f-ytz5-9fhg
13
vulnerability VCID-pca7-qesm-qudu
14
vulnerability VCID-qgn8-zs2m-vkc4
15
vulnerability VCID-r7wm-grca-3fgw
16
vulnerability VCID-vgxb-fkuj-9fgk
17
vulnerability VCID-y15n-cf9z-dyc4
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.3.0
2
url pkg:composer/moodle/moodle@2.4.0
purl pkg:composer/moodle/moodle@2.4.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uce-2wtr-8bfg
1
vulnerability VCID-2vsp-tbwq-1qhf
2
vulnerability VCID-41up-e414-hyba
3
vulnerability VCID-9kbu-4u3w-jufu
4
vulnerability VCID-b2tv-8q9g-qqfz
5
vulnerability VCID-bgaz-b5zd-e7aj
6
vulnerability VCID-ea5s-xphb-6ub7
7
vulnerability VCID-fu6f-fjmn-g7eh
8
vulnerability VCID-fwn7-hez1-ayhj
9
vulnerability VCID-h8xn-n98n-qqdv
10
vulnerability VCID-mh2f-ytz5-9fhg
11
vulnerability VCID-qgn8-zs2m-vkc4
12
vulnerability VCID-qpu2-8paz-7ydv
13
vulnerability VCID-qxyw-7hnt-hqd6
14
vulnerability VCID-r7wm-grca-3fgw
15
vulnerability VCID-vgxb-fkuj-9fgk
16
vulnerability VCID-y15n-cf9z-dyc4
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/moodle/moodle@2.4.0
References
0
reference_url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37411
reference_id
reference_type
scores
url http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37411
1
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101310.html
reference_id
reference_type
scores
url http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101310.html
2
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101358.html
reference_id
reference_type
scores
url http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101358.html
3
reference_url http://openwall.com/lists/oss-security/2013/03/25/2
reference_id
reference_type
scores
url http://openwall.com/lists/oss-security/2013/03/25/2
4
reference_url https://github.com/moodle/moodle/commit/1b628c489def6e7394821f53a838591aa392e332
reference_id
reference_type
scores
url https://github.com/moodle/moodle/commit/1b628c489def6e7394821f53a838591aa392e332
5
reference_url https://github.com/moodle/moodle/commit/646059869e36ea1db844ee0884fb50020348dab1
reference_id
reference_type
scores
url https://github.com/moodle/moodle/commit/646059869e36ea1db844ee0884fb50020348dab1
6
reference_url https://github.com/moodle/moodle/commit/6a9235c998dab2ec0ddc49898a59dd5089156cb0
reference_id
reference_type
scores
url https://github.com/moodle/moodle/commit/6a9235c998dab2ec0ddc49898a59dd5089156cb0
7
reference_url https://github.com/moodle/moodle/commit/a28da5d9b8221e53d3a0815fd0a1dc27bd48816b
reference_id
reference_type
scores
url https://github.com/moodle/moodle/commit/a28da5d9b8221e53d3a0815fd0a1dc27bd48816b
8
reference_url https://github.com/moodle/moodle/commit/bc144ebbe0a78a1ac854454246f26472ba0748b7
reference_id
reference_type
scores
url https://github.com/moodle/moodle/commit/bc144ebbe0a78a1ac854454246f26472ba0748b7
9
reference_url https://github.com/moodle/moodle/commit/e13f286026056febba20e931d71134a2d145a091
reference_id
reference_type
scores
url https://github.com/moodle/moodle/commit/e13f286026056febba20e931d71134a2d145a091
10
reference_url https://github.com/moodle/moodle/commit/ebfdc35f2a33f14051e22af5410485fe6f1afc92
reference_id
reference_type
scores
url https://github.com/moodle/moodle/commit/ebfdc35f2a33f14051e22af5410485fe6f1afc92
11
reference_url https://moodle.org/mod/forum/discuss.php?d=225346
reference_id
reference_type
scores
url https://moodle.org/mod/forum/discuss.php?d=225346
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-1834
reference_id CVE-2013-1834
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2013-1834
13
reference_url https://github.com/advisories/GHSA-prrh-679x-79qh
reference_id GHSA-prrh-679x-79qh
reference_type
scores
url https://github.com/advisories/GHSA-prrh-679x-79qh
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 264
name Permissions, Privileges, and Access Controls
description Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-fu6f-fjmn-g7eh