vulnerability
Moodle: Improper Authorization (CVE-2022-40208)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:N/I:P/A:N) | Mar 24, 2023 | Apr 3, 2023 | Apr 7, 2026 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:P/A:N)
Published
Mar 24, 2023
Added
Apr 3, 2023
Modified
Apr 7, 2026
Description
In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation during a quiz attempt.
Solutions
moodle-upgrade-3_11_9moodle-upgrade-3_9_16moodle-upgrade-4_0_3
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.