Description
A flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. Users with permission to delete entries from a glossary were able to delete entries from other glossaries they did not have direct access to.
Remediation
References
Related Vulnerabilities
Grafana CVE-2023-4822 Vulnerability (CVE-2023-4822)
SharePoint CVE-2025-21344 Vulnerability (CVE-2025-21344)
WordPress Plugin Abstract Submission Local File Inclusion (0.6)
WordPress Plugin The Events Calendar Security Bypass (3.11.2)
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.15)