A vulnerability was found in Moodle versions 3.7 prior to 3.7.3, 3.6 prior to 3.6.7, 3.5 prior to 3.5.9 and previous versions. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle |