VYPR
Moderate severityNVD Advisory· Published Jul 16, 2012· Updated Jun 16, 2026

CVE-2011-4293

CVE-2011-4293

Description

The theme implementation in Moodle 2.0.x before 2.0.4 and 2.1.x before 2.1.1 triggers duplicate caching of Cascading Style Sheets (CSS) and JavaScript content, which allows remote attackers to bypass intended access restrictions and write to an operating-system temporary directory via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moodle/moodlePackagist
>= 2.0, < 2.0.42.0.4
moodle/moodlePackagist
>= 2.1, < 2.1.12.1.1

Affected products

6
  • Moodle/Moodle5 versions
    cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:moodle:moodle:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 2.0, < 2.0.4

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.