1
Candidate: CVE-2012-0800
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0800
5
http://openwall.com/lists/oss-security/2012/01/20/22
7
The form-autocompletion functionality in Moodle 2.0.x before 2.0.7, 2.1.x
8
before 2.1.4, and 2.2.x before 2.2.1 makes it easier for physically
9
proximate attackers to discover passwords by reading the contents of a
10
non-password field, as demonstrated by accessing a create-groups page with
11
Safari on an iPad device.
20
upstream: http://git.moodle.org/gw?p=moodle.git;a=commitdiff;h=6e9989dbd3f261b2e1586ff77b0bf22fc7091485
21
upstream_moodle: released (1.9.16)
22
hardy_moodle: ignored (reached end-of-life)
23
lucid_moodle: ignored (reached end-of-life)
24
maverick_moodle: ignored (reached end-of-life)
25
natty_moodle: ignored (reached end-of-life)
26
oneiric_moodle: ignored (reached end-of-life)
27
precise_moodle: ignored (reached end-of-life)
28
precise/esm_moodle: DNE (precise was needed)
29
quantal_moodle: not-affected (2.2.2.dfsg-2)
30
raring_moodle: not-affected (2.2.2.dfsg-2)
31
saucy_moodle: not-affected (2.2.2.dfsg-2)
32
trusty_moodle: not-affected (2.2.2.dfsg-2)
33
utopic_moodle: not-affected (2.2.2.dfsg-2)
34
vivid_moodle: not-affected (2.2.2.dfsg-2)
35
vivid/stable-phone-overlay_moodle: DNE
36
vivid/ubuntu-core_moodle: DNE
37
wily_moodle: not-affected (2.2.2.dfsg-2)
38
xenial_moodle: not-affected (2.2.2.dfsg-2)
39
yakkety_moodle: not-affected (2.2.2.dfsg-2)
40
zesty_moodle: not-affected (2.2.2.dfsg-2)
41
devel_moodle: not-affected (2.2.2.dfsg-2)