FlaviuPopescu/CVE-2022-28986

Releases0

Stars2

A Insecure direct object references (IDOR) vulnerability in "Simple 2FA Plugin for Moodle" by LMS Doctor

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-28986 ↗	May 10, 2022Tuesday, 10 May 2022, 19:15	7.5 HIGH	5 MEDIUM
LMS Doctor Simple 2 Factor Authentication Plugin For Moodle Affected: 2021072900 has an Insecure direct object references (IDOR) vulnerability, which allows remote attackers to update sensitive records such as email, password and phone number of other user accounts.