Lucene search
K

5 matches found

Snyk
Snyk
added 2024/11/11 12:47 p.m.4 views

Access Control Bypass

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Access Control Bypass due to insufficient access control mechanisms implemented in the external API for quiz overrides. Remediation Upgrade moodle/moodle to version 4.4.2 or higher. References -...

6.9CVSS6.9AI score0.00318EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/11 12:15 p.m.20 views

CVE-2024-43430 Moodle: lack of access control when using external methods for quiz overrides

A flaw was found in moodle. External API access to Quiz can override contained insufficient access control...

5.3CVSS0.00318EPSS
Exploits0References2
CVE
CVE
added 2024/11/11 12:15 p.m.93 views

CVE-2024-43430

Mode C: The CVE-2024-43430 entry concerns Moodle and describes an access-control weakness where external API access to Quiz can override contained access control. The connected documents reiterate Moodle-related details (external API for Quiz, insufficient access control) but do not specify affec...

5.3CVSS5.1AI score0.00318EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2024/08/21 12:0 a.m.12 views

Moodle 4.4.x < 4.4.2 Improper Access Control Vulnerability (MSA-24-0031)

Moodle is prone to an improper access control vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle";...

5.3CVSS5.2AI score0.00318EPSS
Exploits0References1
OSV
OSV
added 2023/03/06 10:15 p.m.3 views

UBUNTU-CVE-2021-36399

In Moodle, ID numbers displayed in the quiz override screens required additional sanitizing to prevent a stored XSS risk...

5.4CVSS5.8AI score0.00516EPSS
Exploits0References3
Rows per page
Query Builder