CVE-2009-4301

CVE-2009-4301 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

mnet/lib.php in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7, when MNET services are enabled, does not properly check permissions, which allows remote authenticated servers to execute arbitrary MNET functions.

Learn more about our Cis Benchmark Audit For Server Software.