CVE-2019-10187

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-10187

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-10187.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-10187

Aliases

GHSA-2mg9-hv69-897x

Downstream

UBUNTU-CVE-2019-10187

Published

2019-07-31T22:15:12.370Z

Modified

2026-02-12T00:26:10.395149Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVSS Calculator

Summary

[none]

Details

A flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. Users with permission to delete entries from a glossary were able to delete entries from other glossaries they did not have direct access to.

References

Affected packages

Git / github.com/moodle/moodle

Affected ranges

Type: GIT
Repo: https://github.com/moodle/moodle
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

5725188035223fe8d8cf1c4a7c1af361a43ca6b6

Introduced

89457b26d192c06325bb6782b85d1025dafbefe9

Fixed

b198428e41b0f2fafe4bb0e6db6e53f5b9eda212

Introduced

cb628a9a08933c2a9f1eae2f3be70ea5d343b419

Fixed

c88d732e399b816b69010c2c6ee7deb2da268681

Affected versions

v3.*

v3.6.0

v3.6.1

v3.6.2

v3.6.3

v3.6.4

v3.7.0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-10187.json"