Description
Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2014-6455 Vulnerability (CVE-2014-6455)
WordPress Plugin WP Events Calendar 'event_id' Parameter SQL Injection (6.5.2)
Apache HTTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-1927)
WordPress Plugin WP Easy full backup Information Disclosure (1.4)
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-5876)