CVE-2017-7490
Description
In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.
CWE
- (none)
Affected
- n/a / Moodle 2.x and 3.x — v=Moodle 2.x and 3.x [affected]
CVSS
- (none)
References
- https://moodle.org/mod/forum/discuss.php?d=352354 x_refsource_CONFIRM
Source
cvelistV5-main/cves/2017/7xxx/CVE-2017-7490.json