Description
In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course.
Remediation
References
Related Vulnerabilities
PostgreSQL Improper Input Validation Vulnerability (CVE-2019-10211)
WordPress Plugin WTI Like Post SQL Injection (1.4.2)
WordPress Plugin BulletProof Security Multiple Cross-Site Scripting Vulnerabilities (.48.9)
WordPress Configuration Vulnerability (CVE-2009-2336)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-14630)