Miggo Logo

CVE-2018-10890: Moodle Exposure of Sensitive Information to an Unauthorized Actor

5.3

CVSS Score
3.0

Basic Information

EPSS Score
0.51963%
Published
5/13/2022
Updated
4/23/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
moodle/moodlecomposer>= 3.1, < 3.1.133.1.13
moodle/moodlecomposer>= 3.3, < 3.3.73.3.7
moodle/moodlecomposer>= 3.4, < 3.4.43.4.4
moodle/moodlecomposer>= 3.5, < 3.5.13.5.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability explicitly affects the core_course_get_categories web service endpoint. In Moodle's architecture, this web service is handled by the get_categories method in course/externallib.php. The description indicates missing visibility checks for hidden categories, which would be implemented in this function's category retrieval logic. While commit details are unavailable, the function's role in category fetching and the CWE-200 classification strongly implicate it as the vulnerable component.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* *l*w w*s *oun* in moo*l* ***or* v*rsions *.*.*, *.*.*, *.*.*, *.*.**. It w*s possi*l* *or t** *or*_*ours*_**t_**t**ori*s w** s*rvi** to r*turn *i***n **t**ori*s, w*i** s*oul* ** omitt** w**n **t**in* *ours* **t**ori*s.

Reasoning

T** vuln*r**ility *xpli*itly *****ts t** *or*_*ours*_**t_**t**ori*s w** s*rvi** *n*point. In Moo*l*'s *r**it**tur*, t*is w** s*rvi** is **n*l** *y t** **t_**t**ori*s m*t*o* in *ours*/*xt*rn*lli*.p*p. T** **s*ription in*i**t*s missin* visi*ility ****k