Description
mod_scorm in Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 mishandles availability dates, which allows remote authenticated users to bypass intended access restrictions and read SCORM contents via unspecified vectors.
Remediation
References
Related Vulnerabilities
PostgreSQL Uncontrolled Search Path Element Vulnerability (CVE-2020-14349)
WordPress Plugin DW Question & Answer Cross-Site Scripting (1.4.2.2)
WordPress Plugin The Events Calendar Countdown Addon Security Bypass (1.3.1)
WordPress Plugin WP Maintenance Mode & Site Under Construction Security Bypass (1.8.1)
WordPress Plugin Advanced Contact form 7 DB Information Disclosure (1.6.2)