Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to bypass intended access restrictions and perform global searches by leveraging the guest role and making a direct request to a URL.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Moodle | Moodle | 2.0.2 | 2.0.2 |
Moodle | Moodle | 2.0.1 | 2.0.1 |
Moodle | Moodle | 2.0.4 | 2.0.4 |
Moodle | Moodle | 2.0.3 | 2.0.3 |
Moodle | Moodle | 2.1.1 | 2.1.1 |
Moodle | Moodle | 2.0.0 | 2.0.0 |
Moodle | Moodle | 2.1.0 | 2.1.0 |