Approved changes feed: RSS · Atom
cpe:2.3:a:moodle:lms:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Moodle (1f527b56-744d-5be6-b0f4-b691bd50b8c3) |
|---|---|
| Product | Lms (481dbd4e-bc2a-561b-b795-3d731b200839) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-1439 |
vulnerable | 2026-06-08 06:25:40.078592 |
Inadequate access control vulnerability in Moodle
MEDIUM (6.5)
Inadequate access control in Moodle LMS. This vulnerability could allow a local user with a student role to create arbitrary events intended for users with higher roles. It could also allow the attacker to add events to the calendar of all users without their prior consent.
Published: 2024-02-12T10:51:44.652Z
Updated: 2024-08-01T18:40:21.074Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.