The vulnerability of the core_user class implementation in the virtual learning environment Moodle allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the coreuser class implementation in the virtual learning environment Moodle is related to deficiencies in displaying hidden user fields. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...