Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Permissions Privileges and Access Controls Vulnerability - CVE-2011-4288 - Vulnerability Database
Moodle

Moodle Permissions Privileges and Access Controls Vulnerability - CVE-2011-4288

Medium
Reference: CVE-2011-4288
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-4288
Title: Moodle Permissions Privileges and Access Controls Vulnerability
Overview:

Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly implement associations between teachers and groups which allows remote authenticated users to read quiz reports of arbitrary students by leveraging the teacher role.