CVE-2022-0984

Summary

Users with the capability to configure badge criteria (teachers and managers by default) were able to configure course badges with profile field criteria, which should only be available for site badges.

Affected Software

VendorProductVersion RangeStatus
n/amoodlemoodle 3.11.6, moodle 3.10.10, moodle 3.9.13affected

Weaknesses

  • CWE-863: CWE-863

ADP Enrichment

CVE Program Container

Additional References

References