Description
mod_scorm in Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 mishandles availability dates, which allows remote authenticated users to bypass intended access restrictions and read SCORM contents via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Portfolio Gallery-Photo Gallery Unspecified Vulnerability (2.3.0)
Drupal Core 9.3.x Cross-Site Scripting (9.3.0 - 9.3.2)
WordPress Plugin BetterOptin Cross-Site Scripting (2.0.2)
MySQL CVE-2015-0499 Vulnerability (CVE-2015-0499)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3464)