Description
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to read activity entries of a different group's users via an advanced search.
Remediation
References
Related Vulnerabilities
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.16)
WordPress Plugin Google XML Sitemaps Cross-Site Scripting (4.0.8)
WordPress Plugin Calendar_plugin Cross-Site Scripting (1.0)
Atlassian Jira CVE-2020-29451 Vulnerability (CVE-2020-29451)
WordPress Plugin MathJax-LaTeX Cross-Site Request Forgery (1.1)