6 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-28334
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authenticated users were able to enumerate other users' names via the learning plans page. CVE-2023-28334 Note that Nessus relies on the presence of the package...
CVE-2023-28334
Authenticated users were able to enumerate other users' names via the learning plans page...
CVE-2023-28334
Authenticated users were able to enumerate other users' names via the learning plans page...
CVE-2023-28334
CVE-2023-28334 affects Moodle via an authenticated user IDOR on the learning plans page, enabling enumeration of other users’ names. OpenVAS lists Moodle core version ranges (e.g., 4.0.x before 4.0.7 and 4.1.x before 4.1.2) as vulnerable to an IDOR vulnerability; Veracode notes full information d...
CVE-2023-28334 Moodle: users' name enumeration possible via idor on learning plans page
Authenticated users were able to enumerate other users' names via the learning plans page...
CVE-2023-28334 Moodle: users' name enumeration possible via idor on learning plans page
Authenticated users were able to enumerate other users' names via the learning plans page...