2 matches found
UBUNTU-CVE-2012-6098
grade/edit/outcome/editform.php in Moodle 1.9.x through 1.9.19, 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/grade:manage capability requirement, which allows remote authenticated users to convert custom outcomes into...
CVE-2012-6098
CVE-2012-6098 affects Moodle: grade/edit/outcome/edit_form.php where the moodle/grade:manage capability is not properly enforced. From Moodle 1.9.x (1.9.19) and 2.1.x up to 2.1.10, 2.2.x up to 2.2.7, 2.3.x up to 2.3.4, and 2.4.x up to 2.4.1, remote authenticated users with a teacher role can conv...