1
Candidate: CVE-2012-6104
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6104
5
http://www.openwall.com/lists/oss-security/2013/01/21
6
https://moodle.org/security/
8
blog/rsslib.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x
9
before 2.4.1 allows remote attackers to obtain sensitive information from
10
site-level blogs by leveraging the guest role and reading an RSS feed.
15
Discovered-by: Charles Fulton
19
upstream: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-36620
20
upstream_moodle: released (2.4.1)
21
hardy_moodle: ignored (reached end-of-life)
22
lucid_moodle: not-affected (1.9.4.dfsg-0ubuntu4)
23
oneiric_moodle: not-affected (1.9.9.dfsg2-3)
24
precise_moodle: not-affected (1.9.9.dfsg2-6)
25
quantal_moodle: ignored (reached end-of-life)
26
raring_moodle: ignored (reached end-of-life)
27
saucy_moodle: not-affected (2.5.2-1)
28
trusty_moodle: not-affected (2.5.4-1ubuntu1)
29
devel_moodle: not-affected (2.5.4-1ubuntu1)