Description
The webservices functionality in Moodle 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 allows remote authenticated users to bypass the deleted status and continue using a server via a token.
Remediation
References
Related Vulnerabilities
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16633)
WordPress Plugin Instagram Feed Unspecified Vulnerability (1.10.2)
Ruby on Rails Other Vulnerability (CVE-2021-22904)
WordPress Plugin Contact Form 7 Multi-Step Forms Security Bypass (3.0.8)
WordPress Plugin OMFG Mobile Pro Cross-Site Scripting (1.1.26)