CVE-2020-1692

Summary

Moodle before version 3.7.2 is vulnerable to information exposure of service tokens for users enrolled in the same course.

Affected Software

VendorProductVersion RangeStatus
The Moodle Projectmoodlebefore 3.7.2affected

Weaknesses

  • CWE-352: CWE-352

ADP Enrichment

CVE Program Container

Additional References

References