Description
The is_enrolled function in lib/accesslib.php in Moodle 2.2.x before 2.2.4 and 2.3.x before 2.3.1 does not properly interact with the caching feature, which might allow remote authenticated users to bypass an intended capability check via unspecified vectors that trigger caching of a user record.
Remediation
References
Related Vulnerabilities
WordPress Plugin All-in-One WP Migration Remote Code Execution (2.0.2)
TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-20114)
IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2016-0284)
WordPress Plugin Stop User Enumeration User Enumeration (1.3.8)
WordPress Plugin WP-Recall-Registration, Profile, Commerce & More Security Bypass (16.26.6)