CVE-2017-15110
N/A
N/A
Summary
In Moodle 3.x, students can find out email addresses of other students in the same course. Using search on the Participants page, students could search email addresses of all participants regardless of email visibility. This allows enumerating and guessing emails of other students.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Moodle 3.x | Moodle 3.x | affected |
Weaknesses
- improper access control
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.