CVE-2019-10187

Summary

A flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. Users with permission to delete entries from a glossary were able to delete entries from other glossaries they did not have direct access to.

Affected Software

VendorProductVersion RangeStatus
The Moodle Projectmoodle3.7.1affected
The Moodle Projectmoodle3.6.5affected
The Moodle Projectmoodle3.5.7affected

Weaknesses

  • CWE-284: CWE-284

ADP Enrichment

CVE Program Container

Additional References

References