Search for packages
| purl | pkg:composer/moodle/moodle@2.4.0-beta |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-3gab-crmy-43cp
Aliases: CVE-2013-4522 GHSA-vm9c-39jx-q45w |
Moodle vulnerable to Exposure of Sensitive Information to an Unauthorized Actor lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy server. |
Affected by 215 other vulnerabilities.
This version is affected by these other vulnerabilities:
Affected by 217 other vulnerabilities.
This version is affected by these other vulnerabilities:
|
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-01T18:13:16.396367+00:00 | GitLab Importer | Affected by | VCID-3gab-crmy-43cp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/moodle/moodle/CVE-2013-4522.yml | 36.1.3 |
| 2025-07-01T14:32:15.180926+00:00 | GHSA Importer | Affected by | VCID-3gab-crmy-43cp | https://github.com/advisories/GHSA-vm9c-39jx-q45w | 36.1.3 |