VYPR

Forum module

by Moodle

CVEs (1)

  • CVE-2015-5272MedFeb 22, 2016
    risk 0.28cvss 4.3epss 0.01

    The Forum module in Moodle 2.7.x before 2.7.10 allows remote authenticated users to post to arbitrary groups by leveraging the teacher role, as demonstrated by a post directed to "all participants."