VYPR
Low severityOSV Advisory· Published Nov 11, 2024· Updated Nov 12, 2024

Moodle: can create global glossary without being admin

CVE-2024-43435

Description

A flaw was found in moodle. Insufficient capability checks make it possible for users with access to restore glossaries in courses to restore them into the global site glossary.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moodle/moodlePackagist
>= 4.4.0, < 4.4.24.4.2
moodle/moodlePackagist
>= 4.3.0, < 4.3.64.3.6
moodle/moodlePackagist
>= 4.2.0, < 4.2.94.2.9
moodle/moodlePackagist
< 4.1.124.1.12

Affected products

3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.