Paul Holden

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** A flaw was discovered in the software, where additional checks were required to ensure that users can only access cohort data they are authorized to retrieve. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** Additional checks are required to ensure that trusttext is applied to glossary entries being restored when it is enabled. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** Insufficient capability checks allow unauthorized access to disable badges that a user does not have permission to access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** moodle (affected versions not specified) **Description** A flaw was found in moodle, where external API access to Quiz can override contained insufficient access control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle versions prior to 4.4.2 **Description** A flaw was found in Moodle where sensitive secrets and keys are not excluded from the export of site administration presets, potentially leading to unintentional leakage if shared with a third party. This issue is related to the unprotected storage of confidential information, which could allow a remote attacker to access sensitive data. **Recommendations** For Moodle versions prior to 4.4.2, upgrade to the latest version to resolve the issue. As a temporary workaround, consider restricting access to the site administration preset export feature to minimize the risk of exploitation. Avoid sharing site administration presets with third parties until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** The issue is related to insufficient capability checks, allowing a remote attacker to delete data, specifically badges that a user does not have permission to access. This is due to a lack of authorization in the virtual learning environment. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** The issue is related to a CSRF vulnerability in the bulk message sending feature of Moodle's Feedback module's non-respondents report. This vulnerability is caused by an incorrect CSRF token check, which could allow a remote attacker to perform a CSRF attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** A flaw was found in Moodle related to local file inclusion when restoring incorrect block backups. This issue may allow a remote attacker to access confidential data. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Feedback (affected versions not specified) **Description** A flaw was found in Feedback where bulk messaging in the activity's non-respondents report did not verify message recipients belonging to the set of users returned by the report. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BigBlueButton (affected versions not specified) **Description** Insufficient capability checks allowed users to gain access to BigBlueButton join URLs they did not have permission to access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** The issue concerns a CSRF risk in the admin management of analytics models due to the lack of a necessary token. This could allow unauthorized actions on behalf of users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Admin preset tool (affected versions not specified) **Description** The issue is related to a CSRF risk due to the absence of a necessary token in actions within the admin preset tool. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Software (affected versions not specified) **Description** The issue concerns a stored XSS risk due to insufficient sanitizing of ID numbers displayed in the lesson overview report. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** The issue is related to an XSS risk in the course upload preview, which can be exploited when users upload unsafe data. This can allow a remote attacker to perform cross-site scripting attacks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Software (affected versions not specified) **Description** The issue concerns a stored XSS risk in the quiz grading report, where ID numbers were not properly sanitized. This could potentially allow for malicious script execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue allows authenticated users to enumerate other users' names via the learning plans page. This means that users who have authentication credentials can access and list the names of other users through this specific page. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** H5P (affected versions not specified) **Description** The issue is related to a CSRF risk when enabling and disabling installed H5P libraries, as the necessary token to prevent this risk was not included. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** A flaw was found in Moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing to prevent a stored XSS risk. The vulnerability is related to insufficient data sanitizing in the bulk marker allocation form, which can allow a remote attacker to conduct cross-site scripting attacks using a specially crafted script. This can enable the attacker to inject and execute arbitrary HTML and script code in a user's browser within the context of the vulnerable website. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle versions 3.11 to 3.11.4 **Description** A flaw was found in the h5p activity web service of Moodle, which is responsible for fetching user attempt data. This flaw is related to insufficient protection of the SQL query structure, allowing for SQL injection. The vulnerability can be exploited by a remote attacker to execute arbitrary SQL queries in the database, potentially leading to reading, deleting, or modifying data in the database and gaining full control over the vulnerable application. **Recommendations** For Moodle versions 3.11 to 3.11.4, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle versions 3.11 to 3.11.3 Moodle versions 3.10 to 3.10.7 Moodle versions 3.9 to 3.9.10 Moodle versions earlier than 3.9 **Description** The issue is related to errors in code generation management, allowing a remote attacker to execute arbitrary code using a specially crafted request. A remote code execution risk was identified when restoring backup files. **Recommendations** For Moodle versions 3.11 to 3.11.3, update to a version later than 3.11.3 to resolve the issue. For Moodle versions 3.10 to 3.10.7, update to a version later than 3.10.7 to resolve the issue. For Moodle versions 3.9 to 3.9.10, update to a version later than 3.9.10 to resolve the issue. For Moodle versions earlier than 3.9, update to a supported version to resolve the issue. As a temporary workaround, consider restricting access to the backup file restoration feature until a patch is available.