Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-28336)
Description
Insufficient filtering of grade report history made it possible for teachers to access the names of users they could not otherwise access.
Looking for the vulnerability index of Invicti's legacy products?