Moodle 2.1.x < 2.1.9 / 2.2.x < 2.2.6 / 2.3.x < 2.3.3 Multiple Vulnerabilities

Binary data 9528.prm...

CVE-2012-5480

The Moodle Database activity module (versions 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3) allows remote attackers to bypass restrictions on reading other participants’ entries via an advanced search, resulting in information disclosure. Root cause: insufficient enforcement of ...