Arbitrary File Download Vulnerability in Moodle 3.x

Arbitrary File Download Vulnerability in Moodle 3.x

CVE-2018-1134 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

An issue was discovered in Moodle 3.x. Students who submitted assignments and exported them to portfolios can download any stored Moodle file by changing the download URL.

Learn more about our Cis Benchmark Audit For Apple Ios.