Moodle is vulnerable to information disclosure. Authenticated attackers can get sensitive information from LTI Ajax requests because the moodle/course:manageactivities
and the mod/lti:addinstance
capabilities are not considered before registered-tool lists are searched.