A vulnerability was found in moodle before versions 3.6.3 and 3.5.5. There was a link to site home within the the Boost theme's secure layout, meaning students could navigate out of the page.Referenceshttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3851https://moodle.org/mod/forum/discuss.php?d=384014#p1547746
