EPSS
Percentile
22.7%
moodle/moodle is vulnerable to authorization bypass attacks. The vulnerability exists as a user could navigate out of the Boost theme without authority.
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3851
github.com/moodle/moodle/commit/7f22b14efb3408645cede026ad11126f17e3f59a
github.com/moodle/moodle/commit/911f7488068a56b05b0ad87be8f9e132075ab0a6
moodle.org/mod/forum/discuss.php?d=384014#p1547746