CVE-2022-30597

Summary

A flaw was found in moodle where the description user field was not hidden when being set as a hidden user field.

Affected Software

VendorProductVersion RangeStatus
n/amoodleAffects : 4.0, 3.11 to 3.11.6, 3.10 to 3.10.10, 3.9 to 3.9.13 and earlier unsupported versionsaffected

Weaknesses

  • CWE-472: CWE-472 - External Control of Assumed-Immutable Web Parameter

ADP Enrichment

CVE Program Container

Additional References

References