3 matches found
EUVD-2022-3979
Malicious code in bioql PyPI...
Information Disclosure
Moodle is vulnerable to information disclosure. Authenticated attackers can use the coreenrolgetenrolledusers web service to obtain sensitive information about course-participants...
The vulnerability of the Moodle learning management system allows a hacker to gain access to confidential information about course participants.
The vulnerability in the coreenrolgetenrolledusers web service of the Moodle learning management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to confidential information about course participan...