lib.php in the Submission comments plugin in the Assignment module in Moodle 2.3.x before 2.3.4 and 2.4.x before 2.4.1 allows remote attackers to read or modify the submission comments (aka feedback comments) of arbitrary users via a crafted URI.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2013-01-27T22:00:00Z

Updated: 2024-09-17T03:49:23.016Z

Reserved: 2012-12-06T00:00:00Z

Link: CVE-2012-6102

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2013-01-27T22:55:03.883

Modified: 2020-12-01T14:52:24.377

Link: CVE-2012-6102

cve-icon Redhat

No data.