Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2009-4298 - Vulnerability Database
Moodle

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2009-4298

Medium
Reference: CVE-2009-4298
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-4298
Title: Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

The LAMS module (mod/lams) for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the (1) username (2) firstname and (3) lastname fields within the user table which allows attackers to obtain user account information via unknown vectors.