login/confirm.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to bypass intended login restrictions by leveraging access to an unconfirmed suspended account.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published: 2015-06-01T19:00:00
Updated: 2024-08-06T05:39:31.951Z
Reserved: 2015-04-10T00:00:00
Link: CVE-2015-3179

No data.

Status : Modified
Published: 2015-06-01T19:59:22.087
Modified: 2024-11-21T02:28:50.347
Link: CVE-2015-3179

No data.