Possible security breach when receiving link in email

  • Resolved detaalf

    (@detaalf)


    4 years, 11 months ago

    In mine, something very wrong is happening, I updated it today, wordpress plugin and moodle, by clicking on the link received in the email in another browser, the system simply renames my user Administrator and allows access to moodle as Administrator, instead to enroll a new user in the course configured for this, this is a possible security breach.

Viewing 4 replies - 1 through 4 (of 4 total)

  • @detaalf

    This is happening because on that browser you are already logged in to your Moodle site as an Administrator. Please logout from the moodle site first and then click on the link to login.

    Thank you.

    Thread Starter detaalf

    (@detaalf)

    Good morning, I thought the same way you did, until I checked if I was logged in, as I mentioned, and I am not, I did a test also directly from my cell phone that never connected to the EAD and when I get the link, enter the ADM user with access to everything and renames it ..

    @detaalf

    We are looking into it. We tested but so far found nothing. Please give us some time to debug the issue. We will try to fix it with the next update.

    Hi, I have the same issue, do you have any solve to that? I have the moowoodle version 2.2 on my wp site and use moodle 3.6, if you like i may giveyou acceso to check the issue

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Possible security breach when receiving link in email’ is closed to new replies.