2 matches found
Information Exposure
Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Information Exposure due to improper checks of users permissions which allows an attacker to view badge recipient lists that they should not have access to. Remediation Upgrade moodle/moodle to...
PT-2023-6404 · Nextcloud +1 · Nextcloud Calendar +1
Name of the Vulnerable Software and Affected Versions: Nextcloud Calendar app versions prior to 4.4.4 Description: The issue is related to missing precondition checks in the Nextcloud calendar app, which causes the server to attempt validation of strings of any length as email addresses. This can...