Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. an access control error vulnerability exists in Moodle, which stems from the calendar:manageentries feature allowing managers to access or modify any calendar event. A remote attacker could exploit the vulnerability by connecting to the Web-based management interface and requesting URLs to retrieve sensitive information.
CPE | Name | Operator | Version |
---|---|---|---|
moodle Moodle | le | 3.8.9 | |
moodle Moodle >=3.9.0, | lt | 3.9.12 | |
moodle Moodle >=3.10.0, | lt | 3.10.9 | |
moodle Moodle >=3.11.0, | lt | 3.11.5 |