Moodle · Moodle · CVE-2014-0129
**Name of the Vulnerable Software and Affected Versions**
Moodle versions 2.5.x through 2.5.4
Moodle versions 2.6.x through 2.6.1
**Description**
The issue concerns the improper tracking of badge issuance to users, allowing remote authenticated users to modify the visibility of arbitrary badges.
**Recommendations**
For Moodle versions 2.5.x through 2.5.4, update to version 2.5.5 or later.
For Moodle versions 2.6.x through 2.6.1, update to version 2.6.2 or later.