Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. Insufficient capability checks could lead to users accessing their grade report for courses where they did not have the required gradereport/user:view capability.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
Moodle 访问控制错误漏洞
Vulnerability Description
Moodle是一套免费、开源的电子学习软件平台,也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle 存在访问控制错误漏洞,该漏洞源于访问限制不当。经过身份验证的远程攻击者可以访问他们不具备所需成绩报告/用户:查看能力的课程的成绩报告。以下产品和版本受到影响:3.11 到 3.11.4、3.10 到 3.10.8、3.9 到 3.9.11 以及更早的不受支持的版本。
CVSS Information
N/A
Vulnerability Type
N/A