Security Advisory
CVE-2011-4309
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote attackers to bypass intended access restrictions and perform global searches by leveraging the guest role and making a direct request to a URL.