Description
Moodle 2.3.x before 2.3.3 allows remote authenticated users to bypass the moodle/role:manage capability requirement and read all capability data by visiting the Check Permissions page.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Quick FrontEnd Editor Multiple Vulnerabilities (5.5)
Joomla Improper Input Validation Vulnerability (CVE-2013-3242)
WordPress Plugin Gmedia Photo Gallery Multiple Cross-Site Scripting Vulnerabilities (1.18.4)
WordPress Plugin dsIDXpress IDX Multiple Unspecified Vulnerabilities (2.1.32)
WordPress Plugin Email Before Download Unspecified Vulnerability (6.9.3)