Description
Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended capability restrictions and perform certain topic changes by leveraging course-editing capabilities.
Remediation
References
Related Vulnerabilities
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4302)
WordPress Plugin O2Tweet Cross-Site Request Forgery (0.0.4)
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2011-1928)
WordPress Plugin Wp Multiple Meta Box SQL Injection (1.0.0)
WordPress Plugin VideoWhisper Video Conference Integration Arbitrary File Upload (4.91.8)