Moderate severityNVD Advisory· Published May 25, 2013· Updated Jun 16, 2026
CVE-2013-2083
CVE-2013-2083
Description
The MoodleQuickForm class in lib/formslib.php in Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not properly handle a certain array-element syntax, which allows remote attackers to bypass intended form-data filtering via a crafted request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moodle/moodlePackagist | < 2.2.10 | 2.2.10 |
moodle/moodlePackagist | >= 2.3.0, < 2.3.7 | 2.3.7 |
moodle/moodlePackagist | >= 2.4.0, < 2.4.4 | 2.4.4 |
Affected products
33cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*+ 31 more
- cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:moodle:moodle:2.4.3:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
16- github.com/advisories/GHSA-m63h-q4x3-6hwjghsaADVISORY
- moodle.org/mod/forum/discuss.phpnvdVendor AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2013-2083ghsaADVISORY
- lists.fedoraproject.org/pipermail/package-announce/2013-May/106965.htmlnvdWEB
- lists.fedoraproject.org/pipermail/package-announce/2013-May/106988.htmlnvdWEB
- lists.fedoraproject.org/pipermail/package-announce/2013-May/107026.htmlnvdWEB
- openwall.com/lists/oss-security/2013/05/21/1nvdWEB
- github.com/moodle/moodle/commit/3c0ba94e879702b3c2f20d4cb4f9120a0bfdd9fcghsaWEB
- github.com/moodle/moodle/commit/8a9c3f4951e05eea80775d8c82d00a64434376c7ghsaWEB
- github.com/moodle/moodle/commit/cc2fb80742af94edde20b6b57da24027f2884a24ghsaWEB
- github.com/moodle/moodle/commit/d39925c792789230e628548ecff9ca34d0a74c16ghsaWEB
- github.com/moodle/moodle/commit/d5909fd1447bc6f05dbf37d7c9eb72b79004e24aghsaWEB
- github.com/moodle/moodle/commit/e4e1bd900a2fb73e81d761bf8a5b9d2d162073d6ghsaWEB
- github.com/moodle/moodle/commit/e8ca6884531a3162cf755d7c09c29e7933c84090ghsaWEB
- github.com/moodle/moodle/commit/eb5852672e5e45fd95b28aab58bad080b15a7b6dghsaWEB
- github.com/moodle/moodle/commit/feeb14b9410cac5a9da7437f8cb663e6ada9c9d4ghsaWEB
News mentions
0No linked articles in our index yet.