cvedb.io
CVE-2023-23923
HIGH · CVSS 8.2
EPSS exploitation probability: 0%
Published 2023-02-17T20:15:11.940 · Last modified 2026-06-17T05:38:17.763

Summary

The vulnerability was found Moodle which exists due to insufficient limitations on the "start page" preference. A remote attacker can set that preference for another user. The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

Affected products

moodle — moodle

Does this affect you?

Add your gear to cvedb and we'll alert you only when moodle ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.