Description
mod/wiki/admin.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote authenticated users to remove wiki pages by leveraging delete access within a different subwiki.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-4667 | mod/wiki/admin.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote authenticated users to remove wiki pages by leveraging delete access within a different subwiki. |
Github GHSA |
GHSA-p3hj-cfhm-7g6v | Moodle allows attackers to remove wiki pages |
References
History
No history.
Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-06T13:03:27.348Z
Reserved: 2014-10-03T00:00:00.000Z
Link: CVE-2014-7837
No data.
Status : Modified
Published: 2014-11-24T11:59:07.913
Modified: 2026-06-17T00:15:48.020
Link: CVE-2014-7837
No data.
OpenCVE Enrichment
No data.
Weaknesses
EUVD
Github GHSA