Moodle Permissions Privileges and Access Controls Vulnerability - CVE-2012-4400
Reference:
CVE-2012-4400
Title:
Moodle Permissions Privileges and Access Controls Vulnerability
Overview:
repository/repository_ajax.php in Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended upload-size restrictions via a -1 value in the maxbytes field.