Описание
Inadequate access control in Moodle LMS. This vulnerability could allow a local user with a student role to create arbitrary events intended for users with higher roles. It could also allow the attacker to add events to the calendar of all users without their prior consent.
Уязвимые конфигурации
EPSS
6.5 Medium
CVSS3
3.3 Low
CVSS3
Дефекты
Связанные уязвимости
Inadequate access control in Moodle LMS. This vulnerability could allow a local user with a student role to create arbitrary events intended for users with higher roles. It could also allow the attacker to add events to the calendar of all users without their prior consent.
Inadequate access control in Moodle LMS. This vulnerability could allo ...
Уязвимость виртуальной обучающей среды Moodle, связанная с недостатками контроля доступа, позволяющая нарушителю с ролью student создавать произвольные события
EPSS
6.5 Medium
CVSS3
3.3 Low
CVSS3