Nixpkgs Security Tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Accepted
(browse all)
Permalink CVE-2024-48900
updated 1 year, 1 month ago by @fricklerhandwerk Activity log
  • Created automatic suggestion 1 year, 1 month ago
  • @fricklerhandwerk accepted 1 year, 1 month ago
Moodle: idor when accessing list of badge recipients

A vulnerability was found in Moodle. Additional checks are required to ensure users with permission to view badge recipients can only access lists of those they are intended to have access to.

Affected products

moodle
  • <4.4.4

Matching in nixpkgs

pkgs.moodle

Free and open-source learning management system (LMS) written in PHP

Package maintainers