What the vulnerability does
01Description
A vulnerability was found in Moodle. Additional checks are required to ensure users can only access the schedule of a report if they have permission to edit that report.
CVSS base score
—
Key dates
02Disclosure timeline
November 18, 2024
CVE published
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2015-3954
CVE-2026-46620 e107: CSRF in comment.php moderation endpoints via token-optional validation in session_handler::check()
CVE-2023-22636
CVE-2026-1141 PHPGurukul News Portal Add Sub-Admin add-subadmins.php improper authorization
CVE-2026-24835 Podman Desktop Extension System Vulnerable to Authentication Bypass
