GHSA-gwf6-q6c2-94p3

Suggest an improvement
Source
https://github.com/advisories/GHSA-gwf6-q6c2-94p3
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/05/GHSA-gwf6-q6c2-94p3/GHSA-gwf6-q6c2-94p3.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-gwf6-q6c2-94p3
Aliases
  • CVE-2024-34009
Published
2024-05-31T21:30:55Z
Modified
2024-06-04T17:57:01.595788Z
Summary
Moodle ReCAPTCHA can be bypassed on the login page
Details

Insufficient checks whether ReCAPTCHA was enabled made it possible to bypass the checks on the login page. This did not affect other pages where ReCAPTCHA is utilized.

References

Affected packages

Packagist / moodle/moodle

Package

Name
moodle/moodle
Purl
pkg:composer/moodle/moodle

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.3.0
Fixed
4.3.4

Affected versions

v4.*

v4.3.0
v4.3.1
v4.3.2
v4.3.3