Описание
Moodle Exposure of Sensitive Information to an Unauthorized Actor
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. It was possible for the core_course_get_categories web service to return hidden categories, which should be omitted when fetching course categories.
Пакеты
moodle/moodle
>= 3.1, < 3.1.13
3.1.13
moodle/moodle
>= 3.3, < 3.3.7
3.3.7
moodle/moodle
>= 3.4, < 3.4.4
3.4.4
moodle/moodle
>= 3.5, < 3.5.1
3.5.1
Связанные уязвимости
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. It was possible for the core_course_get_categories web service to return hidden categories, which should be omitted when fetching course categories.
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. It was possible for the core_course_get_categories web service to return hidden categories, which should be omitted when fetching course categories.
A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13 ...