Description
Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended capability restrictions and perform certain topic changes by leveraging course-editing capabilities.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2022-21541 Vulnerability (CVE-2022-21541)
Atlassian Jira Incorrect Default Permissions Vulnerability (CVE-2019-20106)
Nginx Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2263)
Apache Tomcat Data Processing Errors Vulnerability (CVE-2014-0227)
Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)