The web service responsible for fetching other users' enrolled courses did not validate that the requesting user had permission to view that information in each course in moodle prior to 3.10.2, 3.9.5, 3.8.8, 3.5.17.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moodle moodle |
||
fedoraproject fedora 32 |
||
fedoraproject fedora 34 |