Description

A flaw was found in moodle. Insufficient capability checks make it possible for users with access to restore glossaries in courses to restore them into the global site glossary.

Remediation

References

CVE-2024-43435

Related Vulnerabilities

MySQL CVE-2017-3645 Vulnerability (CVE-2017-3645)

WordPress Plugin Simple File List Multiple Vulnerabilities (3.2.4)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3391)

Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-4654)

WordPress Plugin WP Survey Plus Security Bypass (1.0)

Severity

Medium

Classification

CVE-2024-43435 CWE-754 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities