Описание
Moodle 2.0.x before 2.0.3 does not recognize the configuration setting that makes e-mail addresses visible only to course members, which allows remote authenticated users to obtain sensitive address information by reading a full profile page.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00199
Низкий
4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
почти 13 лет назад
Moodle 2.0.x before 2.0.3 does not recognize the configuration setting that makes e-mail addresses visible only to course members, which allows remote authenticated users to obtain sensitive address information by reading a full profile page.
debian
почти 13 лет назад
Moodle 2.0.x before 2.0.3 does not recognize the configuration setting ...
github
около 3 лет назад
Moodle does not recogniz configuration setting that makes e-mail addresses visible only to course members
EPSS
Процентиль: 42%
0.00199
Низкий
4 Medium
CVSS2
Дефекты
CWE-264