Search for vulnerabilities
Vulnerability details: VCID-ak5z-ggnx-6bhe
Vulnerability ID VCID-ak5z-ggnx-6bhe
Aliases CVE-2013-2082
GHSA-wp3g-pr4h-q6vv
Summary Moodle does not enforce capability requirements for reading blog comments Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not enforce capability requirements for reading blog comments, which allows remote attackers to obtain sensitive information via a crafted request.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-264 Permissions, Privileges, and Access Controls
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
generic_textual MODERATE http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37245
generic_textual MODERATE http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106965.html
generic_textual MODERATE http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106988.html
generic_textual MODERATE http://lists.fedoraproject.org/pipermail/package-announce/2013-May/107026.html
generic_textual MODERATE http://openwall.com/lists/oss-security/2013/05/21/1
epss 0.006 https://api.first.org/data/v1/epss?cve=CVE-2013-2082
epss 0.006 https://api.first.org/data/v1/epss?cve=CVE-2013-2082
cvssv3.1_qr MODERATE https://github.com/advisories/GHSA-wp3g-pr4h-q6vv
generic_textual MODERATE https://github.com/moodle/moodle
generic_textual MODERATE https://github.com/moodle/moodle/commit/28772fb9e7e6be01b765fb721af16901bb47e417
generic_textual MODERATE https://github.com/moodle/moodle/commit/5fde58a59335bc3109a9eaac4a15d1e9217541c3
generic_textual MODERATE https://github.com/moodle/moodle/commit/8aa12adcf26ff2f0b61cd6f0288f2886c8c55bf7
generic_textual MODERATE https://github.com/moodle/moodle/commit/9a909b1a359f72b8d384e18da8e05474604279e1
generic_textual MODERATE https://github.com/moodle/moodle/commit/cb538f0e539e833edb7cf6fa3d705e8abc5003fd
generic_textual MODERATE https://github.com/moodle/moodle/commit/f9e27e8323f31186820d25252ec0d4c6cd65dafc
generic_textual MODERATE https://moodle.org/mod/forum/discuss.php?d=228934
generic_textual MODERATE https://nvd.nist.gov/vuln/detail/CVE-2013-2082
Reference id Reference type URL
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37245
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106965.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106988.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/107026.html
http://openwall.com/lists/oss-security/2013/05/21/1
https://api.first.org/data/v1/epss?cve=CVE-2013-2082
https://github.com/moodle/moodle
https://github.com/moodle/moodle/commit/28772fb9e7e6be01b765fb721af16901bb47e417
https://github.com/moodle/moodle/commit/5fde58a59335bc3109a9eaac4a15d1e9217541c3
https://github.com/moodle/moodle/commit/8aa12adcf26ff2f0b61cd6f0288f2886c8c55bf7
https://github.com/moodle/moodle/commit/9a909b1a359f72b8d384e18da8e05474604279e1
https://github.com/moodle/moodle/commit/cb538f0e539e833edb7cf6fa3d705e8abc5003fd
https://github.com/moodle/moodle/commit/f9e27e8323f31186820d25252ec0d4c6cd65dafc
https://moodle.org/mod/forum/discuss.php?d=228934
https://nvd.nist.gov/vuln/detail/CVE-2013-2082
GHSA-wp3g-pr4h-q6vv https://github.com/advisories/GHSA-wp3g-pr4h-q6vv
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.68437
EPSS Score 0.006
Published At June 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-01T12:28:13.794228+00:00 GithubOSV Importer Import https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-wp3g-pr4h-q6vv/GHSA-wp3g-pr4h-q6vv.json 36.1.3