Nixpkgs Security Tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Accepted
(browse all)
Permalink CVE-2024-48898
updated 1 year, 1 month ago by @fricklerhandwerk Activity log
  • Created automatic suggestion 1 year, 1 month ago
  • @fricklerhandwerk accepted 1 year, 1 month ago
Moodle: some users can delete audiences of other reports

A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from.

Affected products

moodle
  • <4.4.4
  • <4.2.11
  • <4.1.0
  • <4.3.8
  • <4.1.14

Matching in nixpkgs

pkgs.moodle

Free and open-source learning management system (LMS) written in PHP

Package maintainers