Vulnerability CVE-2024-33996
Published: 2024-05-31

Description:
Incorrect validation of allowed event types in a calendar web service made it possible for some users to create events with types/audiences they did not have permission to publish to.

 References:
https://moodle.org/mod/forum/discuss.php?d=458384#p1840909
Copyright 2026, cxsecurity.com

 

Back to Top