Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Incorrect Authorization Vulnerability - CVE-2022-0984 - Vulnerability Database
Moodle

Moodle Incorrect Authorization Vulnerability - CVE-2022-0984

Medium
Reference: CVE-2022-0984
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-0984
Title: Moodle Incorrect Authorization Vulnerability
Overview:

Users with the capability to configure badge criteria (teachers and managers by default) were able to configure course badges with profile field criteria which should only be available for site badges.