Описание
A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Users could assign themselves an escalated role within courses or content accessed via LTI, by modifying the request to the LTI publisher site.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| moodle | removed | package |
EPSS
Процентиль: 58%
0.00374
Низкий
Связанные уязвимости
CVSS3: 8.8
ubuntu
около 6 лет назад
A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Users could assign themselves an escalated role within courses or content accessed via LTI, by modifying the request to the LTI publisher site.
CVSS3: 8.8
nvd
около 6 лет назад
A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Users could assign themselves an escalated role within courses or content accessed via LTI, by modifying the request to the LTI publisher site.
CVSS3: 8.8
github
около 3 лет назад
Moodle Users could elevate their role when accessing the LTI tool on a provider site
EPSS
Процентиль: 58%
0.00374
Низкий