Moodle 2.9.x < 2.9.8 Authentication Bypass
Low Nessus Network Monitor Plugin ID 9833
SynopsisThe remote web server is hosting a web application that is vulnerable to an authentication bypass attack vector.
DescriptionThe remote web server hosts Moodle, an open-source course management system. Versions of Moodle 2.9.x prior to 2.9.8 are affected by a flaw that is due to the program failing to invalidate user tokens after a password change is performed. This may allow an attacker who had compromised a user's account to have their access persist after the password has been changed.
SolutionUpgrade to Moodle version 2.9.8 or later.