PKSA-848d-b4jc-r4z3 Security Advisory
-
[MEDIUM] Moodle allows IDOR in RSS block, which allows access to additional RSS feeds
PKSA-848d-b4jc-r4z3 CVE-2025-3636 GHSA-chmf-m33p-ph8m
Affected package: moodle/moodle
Affected version: >=4.5.0-beta,<4.5.4|>=4.4.0-beta,<4.4.8|>=4.3.0-beta,<4.3.12|<4.1.18
Reported by:
GitHub