Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Permissions were not correctly checked before loading event information into the calendar's edit event modal popup, so logged in non-guest users could view unauthorised calendar events. (Note: It was read-only access, users could not edit the events.)
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
Moodle 信息泄露漏洞
Vulnerability Description
Moodle是一套免费、开源的电子学习软件平台,也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle 3.6版本至3.6.2、3.5版本至3.5.4版本和3.4版本至3.4.7版本中存在信息泄露漏洞。攻击者可利用该漏洞获取未授权的访问权限,执行未授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A