Description
lib/navigationlib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to obtain sensitive course-structure information by leveraging access to a student account with a suspended enrolment.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2008-2590 Vulnerability (CVE-2008-2590)
WordPress Plugin 10Web Map Builder for Google Maps Cross-Site Scripting (1.0.71)
WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.3)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2202)