FreeBSD : moodle -- multiple vulnerabilities (2d299950-ddb0-11e5-8fa8-14dae9d210b8)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Marina Glancy reports :

- MSA-16-0001: Two enrolment-related web services don't check course
visibility

- MSA-16-0002: XSS Vulnerability in course management search

See also :

https://moodle.org/security/
http://www.nessus.org/u?f5f89e15

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 89007 ()

Bugtraq ID:

CVE ID: CVE-2016-0724
CVE-2016-0725

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now