Lucene search
K

9 matches found

Schneier on Security
Schneier on Security
added 2024/06/07 8:55 p.m.16 views

Security and Human Behavior (SHB) 2024

This week, I hosted the seventeenth Workshop on Security and Human Behavior at the Harvard Kennedy School. This is the first workshop since our co-founder, Ross Anderson, died unexpectedly. SHB is a small, annual, invitational workshop of people studying various aspects of the human side of...

7.4AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.5 views

SUSE CVE-2021-41867

An information disclosure vulnerability in OnionShare 2.3 before 2.4 allows remote unauthenticated attackers to retrieve the full list of participants of a non-public OnionShare node via the --chat feature...

5.3CVSS5.2AI score0.01737EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2022/05/13 1:12 a.m.16 views

Moodle allows attackers to discover student e-mail addresses

user/index.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 grants excessive authorization on the basis of the moodle/course:viewhiddenuserfields capability, which allows remote authenticated users to discover student e-mail...

4.3CVSS6.3AI score0.01579EPSS
Exploits0References11Affected Software1
UbuntuCve
UbuntuCve
added 2021/10/04 2:15 p.m.17 views

CVE-2021-41867

An information disclosure vulnerability in OnionShare 2.3 before 2.4 allows remote unauthenticated attackers to retrieve the full list of participants of a non-public OnionShare node via the --chat feature...

5.3CVSS6.6AI score0.01737EPSS
Exploits1References3
OSV
OSV
added 2021/06/28 3:15 p.m.4 views

CVE-2021-28579

Adobe Connect version 11.2.1 and earlier is affected by an Improper access control vulnerability that can lead to the elevation of privileges. An attacker with 'Learner' permissions can leverage this scenario to access the list of event participants...

4.3CVSS5.8AI score0.01088EPSS
Exploits0References1
NVD
NVD
added 2016/05/22 8:59 p.m.12 views

CVE-2016-2151

user/index.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 grants excessive authorization on the basis of the moodle/course:viewhiddenuserfields capability, which allows remote authenticated users to discover student e-mail...

4.3CVSS6AI score0.01579EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2016/05/22 8:59 p.m.16 views

CVE-2016-2151

user/index.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 grants excessive authorization on the basis of the moodle/course:viewhiddenuserfields capability, which allows remote authenticated users to discover student e-mail...

4.3CVSS6.9AI score0.01579EPSS
Exploits0References1
Cvelist
Cvelist
added 2016/05/22 8:0 p.m.24 views

CVE-2016-2151

user/index.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 grants excessive authorization on the basis of the moodle/course:viewhiddenuserfields capability, which allows remote authenticated users to discover student e-mail...

6AI score0.01579EPSS
Exploits0References4
CNVD
CNVD
added 2016/03/22 12:0 a.m.3 views

Moodle Design Bugs

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security vulnerability exists in Moodle version 2.8.x prior to 2.8.11, which stems...

4.3CVSS6.7AI score0.01579EPSS
Exploits0References1
Rows per page
Query Builder