Description
lib/navigationlib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to obtain sensitive course-structure information by leveraging access to a student account with a suspended enrolment.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Google Maps SQL Injection (7.11.17)
WordPress Plugin No Page Comment Multiple Vulnerabilities (1.1)
WordPress 3.8.x Denial of Service Vulnerability (3.8 - 3.8.25)
MySQL CVE-2019-2607 Vulnerability (CVE-2019-2607)
WordPress Plugin Enable Media Replace Unspecified Vulnerability (2.9.5)