A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access.

vendor_unpatched cve-2024-43431: Unpatched CVEs for Ubuntu Linux (cve-2024-43431)

According to its self-reported version, the Moodle install hosted on the remote host is 4.1.x prior to 4.1.12, 4.2.x prior to 4.2.9, 4.3.x prior to 4.3.6, or 4.4.x prior to 4.4.2. It is, therefore, affected by multiple vulnerabilities.

- A LFI vulnerability when restoring malformed block backups.

- A reflected XSS via H5P error message.

- An IDOR in Feedback non-respondents report allows messaging arbitrary site users.

- An XSS risk when restoring malicious course backup file.

- A site administration SQL injection via XMLDB editor.

- Can create global glossary without being admin.

- A CSRF risk in Feedback non-respondents report.

- Authorization headers preserved between "emulated redirects".

- An IDOR in badges allows deletion of arbitrary badges.

- User information visibility control issues in gradebook reports.

- Cache poisoning via injection into storage.

- Admin presets export tool includes some secrets that should not be exported.

- An arbitrary file read risk through pdfTeX.

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
114719	Moodle < 4.1.12 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	critical
114718	Moodle 4.2.x < 4.2.9 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	critical
114717	Moodle 4.3.x < 4.3.6 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	critical
114716	Moodle 4.4.x < 4.4.2 Multiple Vulnerabilities	Web App Scanning	Component Vulnerability	critical

Detections

Analytics

CVE-2024-43431

high

Tenable Plugins

Coming Soon

critical

critical

critical

critical