Moodle · Moodle · CVE-2019-10154
Name of the Vulnerable Software and Affected Versions:
Moodle versions prior to 3.7
Moodle versions prior to 3.6.4
Description:
A flaw was found in a web service that fetches messages, which was not restricted to the current user's conversations.
Recommendations:
For versions prior to 3.7, update to version 3.7 or later.
For versions prior to 3.6.4, update to version 3.6.4 or later.