Description
In Moodle 2.x and 3.x, non-admin site managers may accidentally edit admins via web services.
Remediation
References
Related Vulnerabilities
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-35626)
WordPress Plugin Ticketrilla:Client PHP Object Injection (1.0.1)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1000399)
WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (3.1.24)