Moderate severityNVD Advisory· Published Jul 16, 2012· Updated Jun 16, 2026
CVE-2011-4293
CVE-2011-4293
Description
The theme implementation in Moodle 2.0.x before 2.0.4 and 2.1.x before 2.1.1 triggers duplicate caching of Cascading Style Sheets (CSS) and JavaScript content, which allows remote attackers to bypass intended access restrictions and write to an operating-system temporary directory via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moodle/moodlePackagist | >= 2.0, < 2.0.4 | 2.0.4 |
moodle/moodlePackagist | >= 2.1, < 2.1.1 | 2.1.1 |
Affected products
6Patches
Vulnerability mechanics
References
9- moodle.org/mod/forum/discuss.phpnvdVendor AdvisoryWEB
- github.com/advisories/GHSA-wxvp-8q8h-r6rrghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2011-4293ghsaADVISORY
- git.moodle.org/gwghsaWEB
- openwall.com/lists/oss-security/2011/11/14/1nvdWEB
- github.com/moodle/moodle/commit/05f4555422278190ec24a88466ac43c914a7e5d6ghsaWEB
- github.com/moodle/moodle/commit/9a380fbb53429713b3c422a3146456dc97205329ghsaWEB
- github.com/moodle/moodle/commit/e1c2a211f259821910be2cba23679d4176fb00a3ghsaWEB
- git.moodle.org/gwnvd
News mentions
0No linked articles in our index yet.