Vulnerability: Unenrolled Users Receiving Event Monitor Notifications in Moodle 2.x and 3.x

Vulnerability: Unenrolled Users Receiving Event Monitor Notifications in Moodle 2.x and 3.x

CVE-2016-5014 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course.

Learn more about our User Device Pen Test.