Description
Moodle before 2.2.2 has an external enrolment plugin context check issue where capability checks are not thorough
Remediation
References
Related Vulnerabilities
WordPress Plugin LearnPress-WordPress LMS Multiple Cross-Site Scripting Vulnerabilities (4.1.3)
Grafana Improper Authentication Vulnerability (CVE-2018-15727)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0703)
Moodle Resource Management Errors Vulnerability (CVE-2014-7847)
WordPress Plugin Spiffy Calendar Cross-Site Scripting (3.2.0)