VulnerableCode Package Details - pkg:composer/moodle/moodle@2.1.4

Search for packages

Vulnerability	Summary	Fixed by
VCID-4ays-sgtv-2ugg Aliases: CVE-2012-1156 GHSA-358r-g2xw-7c83	Moodle backs up private files Moodle before 2.2.2, 2.1.5, and 2.0.8 had users' private files included in course backups unnecessarily.	2.1.5 Affected by 0 other vulnerabilities. 2.2.2 Affected by 0 other vulnerabilities.
VCID-nyge-5v2a-6fh7 Aliases: CVE-2012-1159 GHSA-p9hr-f4xj-8w8r	Moodle included private user files in course backups Moodle before 2.2.2 is vulnerable to information disclosure because course backups were including users' private files.	2.1.5 Affected by 0 other vulnerabilities. 2.2.2 Affected by 0 other vulnerabilities.
VCID-vpm4-thxc-tqb6 Aliases: CVE-2012-1157 GHSA-2x36-7xfm-pgm7	Moodle default permissions too permissive Moodle before 2.2.2 default settings allowed all repositories to be viewable by all authenticated users.	2.1.5 Affected by 0 other vulnerabilities. 2.2.2 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-4ays-sgtv-2ugg
Aliases:
CVE-2012-1156
GHSA-358r-g2xw-7c83

Moodle backs up private files Moodle before 2.2.2, 2.1.5, and 2.0.8 had users' private files included in course backups unnecessarily.

2.1.5
Affected by 0 other vulnerabilities.

2.2.2
Affected by 0 other vulnerabilities.

VCID-nyge-5v2a-6fh7
Aliases:
CVE-2012-1159
GHSA-p9hr-f4xj-8w8r

Moodle included private user files in course backups Moodle before 2.2.2 is vulnerable to information disclosure because course backups were including users' private files.

2.1.5
Affected by 0 other vulnerabilities.

2.2.2
Affected by 0 other vulnerabilities.

VCID-vpm4-thxc-tqb6
Aliases:
CVE-2012-1157
GHSA-2x36-7xfm-pgm7

Moodle default permissions too permissive Moodle before 2.2.2 default settings allowed all repositories to be viewable by all authenticated users.

2.1.5
Affected by 0 other vulnerabilities.

2.2.2
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-01T18:13:14.790695+00:00	GitLab Importer	Fixing	VCID-ts9s-qsve-37dw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2012-0797.yml	36.1.3
2025-07-01T18:12:59.098407+00:00	GitLab Importer	Affected by	VCID-4ays-sgtv-2ugg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2012-1156.yml	36.1.3
2025-07-01T18:12:58.817413+00:00	GitLab Importer	Affected by	VCID-nyge-5v2a-6fh7	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2012-1159.yml	36.1.3
2025-07-01T18:12:58.750151+00:00	GitLab Importer	Affected by	VCID-vpm4-thxc-tqb6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2012-1157.yml	36.1.3
2025-07-01T14:32:16.650158+00:00	GHSA Importer	Fixing	VCID-ts9s-qsve-37dw	https://github.com/advisories/GHSA-72gv-qqrp-h9qg	36.1.3
2025-07-01T14:31:40.197820+00:00	GHSA Importer	Affected by	VCID-nyge-5v2a-6fh7	https://github.com/advisories/GHSA-p9hr-f4xj-8w8r	36.1.3
2025-07-01T14:31:40.061689+00:00	GHSA Importer	Affected by	VCID-vpm4-thxc-tqb6	https://github.com/advisories/GHSA-2x36-7xfm-pgm7	36.1.3
2025-07-01T14:31:40.036192+00:00	GHSA Importer	Affected by	VCID-4ays-sgtv-2ugg	https://github.com/advisories/GHSA-358r-g2xw-7c83	36.1.3
2025-07-01T12:29:32.059476+00:00	GithubOSV Importer	Fixing	VCID-ts9s-qsve-37dw	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-72gv-qqrp-h9qg/GHSA-72gv-qqrp-h9qg.json	36.1.3