CVE-2016-7038

Summary

In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.

Affected Software

VendorProductVersion RangeStatus
n/aMoodle 2.x and 3.xMoodle 2.x and 3.xaffected

Weaknesses

  • unspecified

ADP Enrichment

CVE Program Container

Additional References

References