Security Advisory
CVE-2012-0799
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Moodle 2.0.x before 2.0.7 and 2.1.x before 2.1.4, when an anonymous front-page forum is enabled, allows remote attackers to obtain session keys for their sessions by visiting the front page.