CVE 2021-36400
In Moodle, insufficient capability checks made it possible to remove other users' calendar URL subscriptions.
See the
CVE page on Mitre.org
for more details.
In Moodle, insufficient capability checks made it possible to remove other users' calendar URL subscriptions.