2 matches found
CVE-2012-6098
grade/edit/outcome/editform.php in Moodle 1.9.x through 1.9.19, 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/grade:manage capability requirement, which allows remote authenticated users to convert custom outcomes into...
PT-2012-1913 · Moodle · Moodle
Name of the Vulnerable Software and Affected Versions: Moodle versions 2.0.x through 2.0.5 Moodle versions 2.1.x through 2.1.2 Description: The issue allows remote authenticated users to discover the username of a wiki creator by visiting the history and deletion user interface in the...