Total vulnerabilities in the database
A flaw was found in Moodle. When restricting access to a lesson activity with a password, certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to "magic hash" values.
| Software | From | Fixed in |
|---|---|---|
| moodle / moodle | 4.2.0 | 4.2.10 |
| moodle / moodle | 4.3.0 | 4.3.7 |
| moodle / moodle | 4.4.0 | 4.4.3 |
| moodle / moodle | - | 4.1.13 |