High severity8.1NVD Advisory· Published Apr 4, 2018· Updated Jun 17, 2026
CVE-2018-1082
CVE-2018-1082
Description
A flaw was found in Moodle 3.4 to 3.4.1, and 3.3 to 3.3.4. If a user account using OAuth2 authentication method was once confirmed but later suspended, the user could still login to the site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moodle/moodlePackagist | >= 3.3, < 3.3.5 | 3.3.5 |
moodle/moodlePackagist | >= 3.4, < 3.4.2 | 3.4.2 |
Affected products
2- Red Hat, Inc./Moodlev5Range: 3.4 to 3.4.1, 3.3 to 3.3.4
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/103725nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-qh8m-6g4p-33h3ghsaADVISORY
- moodle.org/mod/forum/discuss.phpnvdVendor AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2018-1082ghsaADVISORY
News mentions
0No linked articles in our index yet.