Context Freezing Vulnerability in Moodle

Context Freezing Vulnerability in Moodle

CVE-2019-3852 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

A vulnerability was found in moodle before version 3.6.3. The get_with_capability_join and get_users_by_capability functions were not taking context freezing into account when checking user capabilities

Learn more about our User Device Pen Test.