CVE-2018-1082 - AskarLabs CVE Database

CVE-2018-1082

Vendor Red Hat, Inc.

Product Moodle

Weakness CWE-285

Published April 4, 2018

Last update September 16, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in Moodle 3.4 to 3.4.1, and 3.3 to 3.3.4. If a user account using OAuth2 authentication method was once confirmed but later suspended, the user could still login to the site.

Key dates

02Disclosure timeline

April 4, 2018 CVE published

September 16, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-1082

Related vulnerabilities

04Related CVE

CVE-2026-6564 EMQ EMQX Enterprise Session Handling improper authorization CVE-2020-1690 CVE-2025-11272 SeriaWei ZKEACMS POST Request UrlRedirectionController.cs Delete improper authorization CVE-2025-3014 Insecure direct object references (IDOR) in NightWolf Penetration Platform CVE-2025-30389 Azure Bot Framework SDK Elevation of Privilege Vulnerability