VYPR
Moderate severityNVD Advisory· Published Mar 15, 2021· Updated Aug 3, 2024

CVE-2021-20282

CVE-2021-20282

Description

When creating a user account, it was possible to verify the account without having access to the verification email link/secret in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moodle/moodlePackagist
>= 3.5, < 3.5.173.5.17
moodle/moodlePackagist
>= 3.8, < 3.8.83.8.8
moodle/moodlePackagist
>= 3.9, < 3.9.53.9.5
moodle/moodlePackagist
>= 3.10, < 3.10.23.10.2

Affected products

3

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.