Moodle Exposure of Resource to Wrong Sphere Vulnerability - CVE-2017-7490 - Vulnerability Database

Moodle Exposure of Resource to Wrong Sphere Vulnerability - CVE-2017-7490

Medium

Reference: CVE-2017-7490

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-7490

Title: Moodle Exposure of Resource to Wrong Sphere Vulnerability

Overview:

In Moodle 2.x and 3.x searching of arbitrary blogs is possible because a capability check is missing.