Security Advisory
CVE-2012-2358
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to bypass an activitys read-only state and modify the database by leveraging the student role and editing database activity entries that already exist.