Vulnerability: Unauthorized Access to User Badges in Moodle

Vulnerability: Unauthorized Access to User Badges in Moodle

CVE-2016-3732 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

The capability check to access other badges in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to read the badges of other users.

Learn more about our User Device Pen Test.