CVE-2020-14321 Information

Description

In Moodle before 3.9.1 3.8.4 3.7.7 and 3.5.13 teachers of a course were able to assign themselves the manager role within that course.

Reference

https://moodle.org/mod/forum/discuss.php?d=407393