Описание
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled users" under the Users Settings section.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 2.5.4-1ubuntu1 |
| cosmic | not-affected | 2.5.4-1ubuntu1 |
| devel | not-affected | 2.5.4-1ubuntu1 |
| esm-apps/bionic | not-affected | 2.5.4-1ubuntu1 |
| esm-apps/xenial | not-affected | 2.5.4-1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [2.5.4-1ubuntu1]] |
| hardy | ignored | end of life |
| lucid | not-affected | |
| natty | not-affected |
Показывать по
10
4 Medium
CVSS2
Связанные уязвимости
nvd
почти 13 лет назад
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to "Enrolled users" under the Users Settings section.
debian
почти 13 лет назад
Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authent ...
4 Medium
CVSS2