A vulnerability was found in moodle before versions 3.6.3 and 3.5.5. There was a link to site home within the the Boost theme's secure layout, meaning students could navigate out of the page. Upstream Bug: https://tracker.moodle.org/browse/MDL-64706 Upstream Patch: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64706
Acknowledgments: Name: Martin von Löwis, Luca Bösch
External References: https://moodle.org/mod/forum/discuss.php?d=384014#p1547746
Created moodle tracking bugs for this issue: Affects: epel-all [bug 1692931] Affects: fedora-all [bug 1692930]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
Ensuring a secure browsing experience for all users is of utmost importance, and it's concerning to find that the Boost theme's layout contained an insecure link. Insecure links can potentially expose users to security risks, data breaches, and other vulnerabilities. Just like students really feel insecure while using any writing platforms but when it comes on Edubirdie they always check https://www.aresearchguide.com/edubirdie-review.html site to see what people think about it because there are many reviews of the previous users who actually experienced its writers.