CVE-2022-0984

Published: Apr 29, 2022

Modified: Aug 2, 2024

PUBLISHED

Description

Users with the capability to configure badge criteria (teachers and managers by default) were able to configure course badges with profile field criteria, which should only be available for site badges.

Vendor	Product	Versions
n/a	moodle	affected `moodle 3.11.6, moodle 3.10.10, moodle 3.9.13`

Weaknesses (CWE)

CWE-863

References

https://bugzilla.redhat.com/show_bug.cgi?id=2064118

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-0984

Description

Affected Products

Weaknesses (CWE)

References