
We found results for “”
CVE-2023-5545
Good to know:

Date: November 9, 2023
H5P metadata automatically populated the author with the user's username, which could be sensitive information.
Language: PHP
Severity Score
Related Resources (7)
Severity Score
Weakness Type (CWE)
Top Fix

Upgrade Version
Upgrade to version agattitech/moodle_boilerplate - no_fix;moodle/moodle - dev-MOODLE_311_STABLE;moodle/moodle - v4.1.6;moodle/moodle - v3.9.9;moodle/moodle - dev-MOODLE_39_STABLE;moodle/moodle - v4.0.11;moodle/moodle - v3.9.24;moodle/moodle - v3.8.1;moodle/moodle - v3.8.5;moodle/moodle - v4.3.0-rc2;moodle/moodle - v3.9.15;moodle/moodle - v4.2.3;moodle/moodle - v4.0.0-rc1;moodle/moodle - v3.11.17;moodle/moodle - v3.9.0-beta;moodle/moodle - v3.10.6;moodle/moodle - v3.11.2;drakeba/moodle-core - no_fix
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | LOCAL |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | NONE |
User Interaction (UI): | REQUIRED |
Scope (S): | UNCHANGED |
Confidentiality (C): | LOW |
Integrity (I): | NONE |
Availability (A): | NONE |