virus logo FortiClient Vulnerability

Moodle CVE-2016-5013 Arbitrary Code Execution Vulnerability

description-logoDescription

By changing own name user can inject arbitrary email addresses in the emails that moodle sends to him/her. This can be used to send spam when moodle emails user content such as messages and forum posts. It can only be exploited by registered users and very easy to trace and find the attacker.

affected-products-logoAffected Applications

Moodle

CVE References

CVE-2016-5013

Other References

https://moodle.org/mod/forum/discuss.php?d=336698
ID 36135
Created Aug 12, 2018
Description
Updated		 Jan 16, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS MacOS
Vendor Moodle
Patch manual
Application Moodle