CVE-2018-1135

Summary

An issue was discovered in Moodle 3.x. Students who posted on forums and exported the posts to portfolios can download any stored Moodle file by changing the download URL.

Affected Software

VendorProductVersion RangeStatus
n/aMoodle 3.x unknownMoodle 3.x unknownaffected

Weaknesses

  • incorrect access control

ADP Enrichment

CVE Program Container

Additional References

References