Lucene search
GoogleOSV:CVE-2020-25703HistoryNov 19, 2020 - 5:15 p.m.
CVE-2020-25703
2020-11-1917:15:13
Google
osv.dev
11
moodle
cve-2020-25703
user emails
privacy
data download
software vulnerability
The participants table download in Moodle always included user emails, but should have only done so when users’ emails are not hidden. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5 and 3.7 to 3.7.8. This is fixed in moodle 3.9.3, 3.8.6, 3.7.9, and 3.10.
References
bugzilla.redhat.com/show_bug.cgi?id=1895439
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4NNFCHPPHRJNJROIX6SYMHOC6HMKP3GU/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B55KXBVAT45MDASJ3EK6VIGQOYGJ4NH6/
moodle.org/mod/forum/discuss.php?d=413941
Related
prion
prion
Code injection
2020-11-19 17:15:00
openvas
openvas
Moodle 3.7.x < 3.7.9, 3.8.x < 3.8.6, 3.9.x < 3.9.3 Information Disclosure Vulnerability
2020-11-27 00:00:00
Fedora: Security Advisory for moodle (FEDORA-2020-304aa2c365)
2020-11-28 00:00:00
Fedora: Security Advisory for moodle (FEDORA-2020-db73e37548)
2020-11-28 00:00:00
cvelist
cvelist
CVE-2020-25703
2020-11-19 16:13:35
veracode
veracode
Information Disclosure
2020-11-20 04:44:08
osv
osv
BIT-moodle-2020-25703
2024-03-06 11:11:25
Exposure of Sensitive Information to an Unauthorized Actor in Moodle
2021-10-21 17:49:08
nvd
nvd
CVE-2020-25703
2020-11-19 17:15:13
github
github
Exposure of Sensitive Information to an Unauthorized Actor in Moodle
2021-10-21 17:49:08
cve
cve
CVE-2020-25703
2020-11-19 17:15:13
ubuntucve
ubuntucve
CVE-2020-25703
2020-11-19 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: moodle-3.9.3-1.fc33
2020-11-28 02:04:40
[SECURITY] Fedora 32 Update: moodle-3.8.6-1.fc32
2020-11-28 02:10:53
nessus
nessus
Fedora 32 : moodle (2020-db73e37548)
2020-11-30 00:00:00
Fedora 33 : moodle (2020-304aa2c365)
2020-11-30 00:00:00