Описание
Moodle does not revoke role capabilities correctly
A vulnerability was found in Moodle versions 3.7.x before 3.7.3, 3.6.x before 3.6.7 and 3.5.x before 3.5.9. When a cohort role assignment was removed, the associated capabilities were not being revoked (where applicable).
Пакеты
moodle/moodle
>= 3.7.0, < 3.7.3
3.7.3
moodle/moodle
>= 3.6.0, < 3.6.7
3.6.7
moodle/moodle
>= 3.5.0, < 3.5.9
3.5.9
Связанные уязвимости
A vulnerability was found in Moodle versions 3.7.x before 3.7.3, 3.6.x before 3.6.7 and 3.5.x before 3.5.9. When a cohort role assignment was removed, the associated capabilities were not being revoked (where applicable).
A vulnerability was found in Moodle versions 3.7.x before 3.7.3, 3.6.x before 3.6.7 and 3.5.x before 3.5.9. When a cohort role assignment was removed, the associated capabilities were not being revoked (where applicable).
A vulnerability was found in Moodle versions 3.7.x before 3.7.3, 3.6.x ...