EPSS
Percentile
67.9%
Moodle is vulnerable to authorization bypass. A malicious user can access the contents of another logged out user’s dropbox through the dropbox repository file picker as long as the browser session is continued.
git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-29872
openwall.com/lists/oss-security/2012/11/19/1
www.securityfocus.com/bid/56505
moodle.org/mod/forum/discuss.php?d=216155