Description
Moodle failed to verify enrolment status correctly when sending quiz notifications. As a result, suspended or inactive users might receive quiz-related messages, leaking limited course information.
Remediation
References
Related Vulnerabilities
Liferay DXP Uncontrolled Resource Consumption Vulnerability (CVE-2025-62260)
WordPress Plugin WordPress Gallery Cross-Site Scripting (1.0)
WordPress Plugin LearnDash LMS SQL Injection (4.5.3)
WordPress Plugin All In One Favicon Cross-Site Scripting (4.6)
MyBB Improper Privilege Management Vulnerability (CVE-2018-1000503)