Moodle is vulnerable to access restriction bypass. The attacks exist because mod/chat/gui_sockets/index.php
does not check for privileges for access to a daemon-mode Chat activity, allowing a malicious user unauthorized access to daemon-mode Chat activity.