Описание
A vulnerability was found in Moodle. Additional checks are required to ensure users can only fetch the list of course badges for courses that they are intended to have access to.
Ссылки
- Issue Tracking
Уязвимые конфигурации
Конфигурация 1Версия от 4.4.0 (включая) до 4.4.4 (исключая)
cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.00113
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-284
CWE-639
Связанные уязвимости
CVSS3: 4.3
ubuntu
около 1 года назад
A vulnerability was found in Moodle. Additional checks are required to ensure users can only fetch the list of course badges for courses that they are intended to have access to.
CVSS3: 4.3
debian
около 1 года назад
A vulnerability was found in Moodle. Additional checks are required to ...
CVSS3: 4.3
github
около 1 года назад
Moodle IDOR when accessing list of course badges
EPSS
Процентиль: 31%
0.00113
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-284
CWE-639