VYPR
Moderate severityNVD Advisory· Published Jul 17, 2012· Updated Jun 16, 2026

CVE-2012-0797

CVE-2012-0797

Description

The webservices functionality in Moodle 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 allows remote authenticated users to bypass the deleted status and continue using a server via a token.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moodle/moodlePackagist
>= 2.2, < 2.2.12.2.1
moodle/moodlePackagist
>= 2.1, < 2.1.42.1.4
moodle/moodlePackagist
>= 2.0, < 2.0.72.0.7

Affected products

3
  • Moodle/Moodle2 versions
    cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*range: >=2.0,<=2.0.6
    • cpe:2.3:a:moodle:moodle:2.2.0:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 2.2, < 2.2.1

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.