0.002 Low
EPSS
Percentile
55.1%
Moodle is vulnerable to privilege escalation. Users with the ability to course restore are able to add additional capabilities to roles within that course because it does not check the user’s permission to change capabilities.
bugzilla.redhat.com/show_bug.cgi?id=1895425
lists.fedoraproject.org/archives/list/[email protected]/message/4NNFCHPPHRJNJROIX6SYMHOC6HMKP3GU/
lists.fedoraproject.org/archives/list/[email protected]/message/B55KXBVAT45MDASJ3EK6VIGQOYGJ4NH6/
moodle.org/mod/forum/discuss.php?d=413936