Cloud security intelligence for modern infrastructure.

Stay informed

📬 Product updates & blog posts🛡️ CVE alerts & security advisories

Frequency:

Sent from noreply@echelongraph.io · Unsubscribe anytime

Product

Overview
Enterprise
Agents
AI Analyst
Pricing
Compare
vs. Competitors

Resources

CVE Pulse
Compliance Directory
Newsletter
Documentation
Readiness Calculator
Blog

Security Tools

Surface Scanner
AI Security Index
AI Threat Map
Shadow AI Radar
Shadow Engine Map

Company

Design Partners
Changelog
Contact

Legal

Privacy
Terms
Security
DPA

SOC 2 Type IIISO 27001GDPRHIPAA Ready

Home›CVE Pulse›CVE-2011-4585

CVE-2011-4585

NONECVSS 0.0

0.0

login/change_password.php in Moodle 1.9.x before 1.9.15 does not use https for the change-password form even if the httpslogin option is enabled, which allows remote attackers to obtain credentials by sniffing the network.

📅 Published

July 20, 2012

🔄 Last Modified

April 29, 2026

🔗 References (8)

secalert@redhathttp://git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=01dd64a8c8aa95f793accea371b2392e662663c5
secalert@redhathttp://moodle.org/mod/forum/discuss.php?d=191752
secalert@redhathttp://www.debian.org/security/2012/dsa-2421
secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=761248
af854a3a-2127-422b-91ae-364da2661108http://git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=01dd64a8c8aa95f793accea371b2392e662663c5
af854a3a-2127-422b-91ae-364da2661108http://moodle.org/mod/forum/discuss.php?d=191752
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2012/dsa-2421
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=761248

💥

Dependency Blast Radius

See which npm, PyPI, Go, and Maven packages are affected by CVE-2011-4585

Explore →

Is Your Infrastructure Affected by CVE-2011-4585?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs