Account Lockout Bypass Vulnerability in Moodle

Account Lockout Bypass Vulnerability in Moodle

CVE-2022-30600 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A flaw was found in moodle where logic used to count failed login attempts could result in the account lockout threshold being bypassed.

Learn more about our Web Application Penetration Testing UK.