CVE-2021-20283: Incorrect Authorization
(updated )
The web service responsible for fetching other users’ enrolled courses does not validate that the requesting user had permission to view that information in each course in moodle
References
Detect and mitigate CVE-2021-20283 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →