Description
In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course.
Remediation
References
Related Vulnerabilities
Oracle Application Server Other Vulnerability (CVE-2002-1631)
WordPress Plugin SimpleFlickr Cross-Site Request Forgery (3.0.3)
Chamilo Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-27427)
WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (2.1.10)