Описание
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled users" under the Users Settings section.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 2.5.4-1ubuntu1 |
| cosmic | not-affected | 2.5.4-1ubuntu1 |
| devel | not-affected | 2.5.4-1ubuntu1 |
| esm-apps/bionic | not-affected | 2.5.4-1ubuntu1 |
| esm-apps/xenial | not-affected | 2.5.4-1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [2.5.4-1ubuntu1]] |
| hardy | ignored | end of life |
| lucid | not-affected | |
| natty | not-affected |
Показывать по
10
EPSS
Процентиль: 40%
0.00176
Низкий
4 Medium
CVSS2
Связанные уязвимости
nvd
около 13 лет назад
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled users" under the Users Settings section.
debian
около 13 лет назад
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authent ...
EPSS
Процентиль: 40%
0.00176
Низкий
4 Medium
CVSS2