CVE-2023-23923

CVE-2023-23923: Moodle: possible to set the preferred "start page" of other users

Weakness CWE-284

Published February 17, 2023

Last update August 2, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The vulnerability was found Moodle which exists due to insufficient limitations on the "start page" preference. A remote attacker can set that preference for another user. The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

Key dates

02Disclosure timeline

February 17, 2023 CVE published

August 2, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-23923

Related vulnerabilities

CVE-2023-23923: Moodle: possible to set the preferred "start page" of other users

01Description

02Disclosure timeline

03References

04Related CVE