Bug 2318821 (CVE-2024-48897) - moodle: IDOR in edit/delete RSS feed Key Information: Bug ID: 2318821 CVE ID: CVE-2024-48897 Product: moodle Component: vulnerability Version: unspecified Severity: medium Status: NEW Reported: 2024-10-15 17:32 UTC by OSIDB Bzimport Modified: 2024-10-16 15:50 UTC Doc Type: 1 Doc Text: A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify. Assignee: Product Security DevOps Team Priority: medium OS: Linux Target Milestone: --- Depends On: 2318824 Blocks: TreeView+ Attachments: (Terms of Use) Additional Notes: You need to log in before you can comment on or make changes to this bug.