Описание
Moodle Incorrect Authorization vulnerability
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.
Пакеты
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
>= 3.9.0-beta, < 3.9.1
3.9.1
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
>= 3.8.0-beta, < 3.8.4
3.8.4
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
>= 3.6.0-beta, < 3.7.7
3.7.7
Наименование
moodle/moodle
composer
Затронутые версииВерсия исправления
< 3.5.13
3.5.13
Связанные уязвимости
CVSS3: 8.8
ubuntu
почти 3 года назад
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.
CVSS3: 8.8
nvd
почти 3 года назад
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.
CVSS3: 8.8
debian
почти 3 года назад
In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course ...