Insufficient checks whether ReCAPTCHA was enabled made it possible to bypass the checks on the login page. This did not affect other pages where ReCAPTCHA is utilized.
[
{
"versions": [
{
"status": "affected",
"version": "4.3",
"versionType": "semver",
"lessThanOrEqual": "4.3.3"
}
],
"packageName": "Moodle",
"collectionURL": "https://git.moodle.org",
"defaultStatus": "unknown"
}
]
[
{
"cpes": [
"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*"
],
"vendor": "moodle",
"product": "moodle",
"versions": [
{
"status": "affected",
"version": "4.3",
"versionType": "semver",
"lessThanOrEqual": "4.3.3"
}
],
"defaultStatus": "unknown"
}
]