CVE-2024-25981 Information

Description

Separate Groups mode restrictions were not honored when performing a forum export which would export forum data for all groups. By default this only provided additional access to non-editing teachers.

Reference

http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-80504 https://bugzilla.redhat.com/show_bug.cgi?id=2264097 https://moodle.org/mod/forum/discuss.php?d=455637