Security Advisory

CVE-2011-4285

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-07-16 10:00:00
Last updated 2024-08-07 00:01:51
Assigner redhat
State PUBLISHED

Description

The default configuration of Moodle 2.0.x before 2.0.2 has an incorrect setting of the moodle/course:delete capability, which allows remote authenticated users to delete arbitrary courses by leveraging the teacher role.