Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4309)
Description
Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to bypass intended access restrictions and perform global searches by leveraging the guest role and making a direct request to a URL.