Описание
Moodle Improper Access Control
The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the administrator.
Пакеты
moodle/moodle
>= 3.0, < 3.0.3
3.0.3
moodle/moodle
>= 2.9, < 2.9.6
2.9.6
moodle/moodle
>= 2.8, < 2.8.12
2.8.12
moodle/moodle
>= 2.7, < 2.7.14
2.7.14
Связанные уязвимости
The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the administrator.
The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the administrator.
The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, ...