Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Users' enrollment capabilities were not being sufficiently checked in Moodle when they are restored into an existing course. This could lead to them unenrolling users without having permission to do so. Versions affected: 3.5 to 3.5.14, 3.7 to 3.7.8, 3.8 to 3.8.5, 3.9 to 3.9.2 and earlier unsupported versions. Fixed in 3.9.3, 3.8.6, 3.7.9, 3.5.15, and 3.10.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
Moodle 访问控制错误漏洞
Vulnerability Description
Moodle是一套免费、开源的电子学习软件平台,也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle 存在访问控制错误漏洞,该漏洞源于当用户恢复到现有课程时,没有充分检查他们的注册能力,这可能导致他们在没有获得许可的情况下取消用户的注册。以下产品及版本受到影响:3.9版本至3.9.2版本, 3.8版本至3.8.5版本, 3.7版本至3.7.8版本, 3.5版本至3.5.14版本及之前版本。
CVSS Information
N/A
Vulnerability Type
N/A