Description In Moodle 3.x, course creators are able to change system default settings for courses. Remediation References CVE-2017-7532 Related Vulnerabilities WordPress Plugin Nofollow Links Cross-Site Scripting (1.0.10) WordPress Plugin WordPress Simple Shopping Cart Cross-Site Scripting (4.6.1) Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7984) Drupal Core 5.x Cross-Site Scripting (5.0 - 5.5) Jetpack 2.9.3: Critical Security Update Severity Medium Classification CVE-2017-7532 CWE-269 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N Tags Missing Update Known Vulnerabilities