Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2012-2353 - Vulnerability Database
Moodle

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2012-2353

Medium
Reference: CVE-2012-2353
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-2353
Title: Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3 allows remote authenticated users to obtain sensitive user information from hidden fields by leveraging the teacher role and navigating to quotEnrolled usersquot under the Users Settings section.