Moodle · Moodle · CVE-2009-4301
**Name of the Vulnerable Software and Affected Versions**
Moodle versions 1.8 through 1.8.10
Moodle versions 1.9 through 1.9.6
**Description**
The issue is related to improper permission checking in MNET services. When MNET services are enabled, remote authenticated servers can execute arbitrary MNET functions.
**Recommendations**
For Moodle versions 1.8 through 1.8.10, update to version 1.8.11 or later.
For Moodle versions 1.9 through 1.9.6, update to version 1.9.7 or later.