Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2017-7489

In Moodle 2.x and 3.x, remote authenticated users can take ownership of arbitrary blogs by editing an external blog link.

  • Published: May 15, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-7489
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.3
  • AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CVSS v2:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

Software From Fixed in
moodle / moodle 2.7.1 2.7.1.x
moodle / moodle 3.1.0-rc2 3.1.0-rc2.x
moodle / moodle 2.7.0-rc2 2.7.0-rc2.x
moodle / moodle 3.0.7 3.0.7.x
moodle / moodle 3.2.0-rc1 3.2.0-rc1.x
moodle / moodle 2.7.6 2.7.6.x
moodle / moodle 3.2.0-rc3 3.2.0-rc3.x
moodle / moodle 2.7.14 2.7.14.x
moodle / moodle 2.7.11 2.7.11.x
moodle / moodle 2.7.2 2.7.2.x
moodle / moodle 2.7.4 2.7.4.x
moodle / moodle 2.7.15 2.7.15.x
moodle / moodle 3.1.0 3.1.0.x
moodle / moodle 3.0.6 3.0.6.x
moodle / moodle 3.2.2 3.2.2.x
moodle / moodle 2.7.16 2.7.16.x
moodle / moodle 2.7.9 2.7.9.x
moodle / moodle 3.2.0-rc2 3.2.0-rc2.x
moodle / moodle 3.0.5 3.0.5.x
moodle / moodle 3.0.4 3.0.4.x
moodle / moodle 3.2.0-beta 3.2.0-beta.x
moodle / moodle 3.0.2 3.0.2.x
moodle / moodle 2.7.12 2.7.12.x
moodle / moodle 3.1.0-beta 3.1.0-beta.x
moodle / moodle 3.0.0-beta 3.0.0-beta.x
moodle / moodle 3.0.0-rc3 3.0.0-rc3.x
moodle / moodle 3.0.0-rc4 3.0.0-rc4.x
moodle / moodle 3.1.2 3.1.2.x
moodle / moodle 2.7.0-beta 2.7.0-beta.x
moodle / moodle 3.1.4 3.1.4.x
moodle / moodle 2.7.10 2.7.10.x
moodle / moodle 2.7.17 2.7.17.x
moodle / moodle 2.7.5 2.7.5.x
moodle / moodle 3.0.1 3.0.1.x
moodle / moodle 2.7.3 2.7.3.x
moodle / moodle 2.7.0 2.7.0.x
moodle / moodle 3.0.0-rc1 3.0.0-rc1.x
moodle / moodle 3.2.0 3.2.0.x
moodle / moodle 3.0.0 3.0.0.x
moodle / moodle 2.7.0-rc1 2.7.0-rc1.x
moodle / moodle 3.1.0-rc1 3.1.0-rc1.x
moodle / moodle 3.0.0-rc2 3.0.0-rc2.x
moodle / moodle 3.1.3 3.1.3.x
moodle / moodle 2.7.18 2.7.18.x
moodle / moodle 2.7.13 2.7.13.x
moodle / moodle 3.0.3 3.0.3.x
moodle / moodle 3.0.8 3.0.8.x
moodle / moodle 2.7.8 2.7.8.x
moodle / moodle 3.2.1 3.2.1.x
moodle / moodle 3.1.1 3.1.1.x
moodle / moodle 2.7.7 2.7.7.x
moodle / moodle 3.2.0-rc4 3.2.0-rc4.x
moodle / moodle 3.2.0-rc5 3.2.0-rc5.x